{"id":57,"date":"2008-12-16T07:47:25","date_gmt":"2008-12-16T11:47:25","guid":{"rendered":"http:\/\/www.compdigitec.com\/labs\/?p=57"},"modified":"2010-11-14T19:12:07","modified_gmt":"2010-11-15T00:12:07","slug":"phpbb-force-login-hack","status":"publish","type":"post","link":"http:\/\/www.compdigitec.com\/labs\/2008\/12\/16\/phpbb-force-login-hack\/","title":{"rendered":"phpBB force login hack"},"content":{"rendered":"<p>To set up a private forum in <a rel=\"nofollow\" href=\"http:\/\/www.phpbb.com\">phpBB<\/a>, you could simply make all the forums &#8220;No Access&#8221; to guests and bots. But if they can still view your member list and profiles, that is a security leak. Here is a patch to remedy that by forcing the guest or bot to login before they can see the forum:<\/p>\n<ol>\n<li>Open up index.php from your phpBB installation.<\/li>\n<li>After line 25 (&#8220;<strong>$auth-&gt;acl($user-&gt;data);<\/strong>&#8220;), add the following code:<br \/>\n\/\/ Hack to disable anonymous viewing<br \/>\nif ($user-&gt;data[&#8216;user_id&#8217;] == ANONYMOUS || $user-&gt;data[&#8216;is_bot&#8217;])<br \/>\n{<br \/>\nlogin_box();<br \/>\n} else {<\/li>\n<li>After the line &#8220;<strong>page_header($user-&gt;lang[&#8216;INDEX&#8217;]);<\/strong>&#8220;, add the following code:<br \/>\n\/\/ end hack to disable anonymous viewing<br \/>\n};<\/li>\n<li>Re-upload index.php to your web server. Don&#8217;t forget to clear your cache and log out to see the effect.<\/li>\n<\/ol>","protected":false},"excerpt":{"rendered":"<p>To set up a private forum in phpBB, you could simply make all the forums &#8220;No Access&#8221; to guests and bots. But if they can still view your member list and profiles, that is a security leak. Here is a patch to remedy that by forcing the guest or bot to login before they can [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[5],"tags":[306,307,274,309,310,305,308,311,312,313],"_links":{"self":[{"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/posts\/57"}],"collection":[{"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/comments?post=57"}],"version-history":[{"count":0,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/posts\/57\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/media?parent=57"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/categories?post=57"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.compdigitec.com\/labs\/wp-json\/wp\/v2\/tags?post=57"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}