Author Topic: [GUIDE] Admin CP: Security and Moderation  (Read 3757 times)

0 Members and 0 Guests are viewing this topic.

Offline Alex

  • CAF Support Team
  • Full Member
  • ***
  • Posts: 235
  • Karma: 12
  • Gender: Male
  • Location: Greenville, North Carolina
    • View Profile
[GUIDE] Admin CP: Security and Moderation
« on: August 05, 2010, 12:17:12 am »

(Guide copied from Simple Machines Support Site)

-Contents-
Part 1- General
Part 2- Anti-Spam
Part 3- Moderation




General
The General page in the Security and Moderation section of your Administration Panel offers several security related settings that you can configure to meet your needs. Pay close attention to these settings, as a properly secured forum generally should take measures to ensure the safety of itself and its members.

The following are the settings included on this page:
  • Do not reveal contact details of members to guests - If selected this option will hide the email addresses and messenger contact details of all members from any guests on your forum.
  • Allow viewable email addresses - If this option is enabled instead of users email addresses being hidden to normal members and guests they will be publicly viewable on the forum. Enabling this will put your users at greater risk of being victims of spam as a result of email harvesters visiting your forum. Note this setting does not override the user setting for hiding their email address from users. Enabling this setting is not recommended.
  • Failed login threshold - Set the number of failed login attempts before directing the user to the password reminder screen.
  • Enable error logging - This will log any errors, like a failed login, so you can see what went wrong.
  • Include database query in the error log - This will include the full query sent to the database in with any database error. Requires error logging to be turned on. Note that this will affect the ability to filter the error log by the error message.
  • Disable administration security - This disables the additional password check for the administration section. This is not recommended!
  • Require reactivation after email change - When this option is checked all members who change their email address in their profile will have to reactivate their account from an email sent to that address.
  • Require admin approval when member deletes account - This will make it so that when a member deletes their account, an administrator must approve the deletion request before the account is actually deleted.
  • Required strength for user passwords - This determines how complicated a users password has to be to register. The following options are available:
    • Low - The password must be at least four characters long.
    • Medium - The password must be at least eight characters long, and can not be part of a users name or email address.
    • High - As for medium, except the password must also contain a mixture of upper and lower case letters, and at least one number.
  • Enable reporting of personal messages - This option allows your users to report personal messages they receive to the administration team. This may be useful in helping to track down any abuse of the personal messaging system.
[Top]




Anti-Spam
Require Verification

  • Require verification on registration page - If enabled people registering to your forum must input characters into an input field as they are shown in a corresponding image. This is to prevent bots from registering to your forum so it is recommended to have this setting enabled in most cases.
  • Require verification on all guest searches - When guests make use of the search function they will have to input characters into an input field as they are shown in a corresponding image if this option is enabled.
  • Post count under which users must pass verification to make a post - Set the number of posts that members who have fewer posts than the specified amount would have to enter characters into an input field as shown in a corresponding image to verify that they are actual human and not a bot.

Personal Message Settings
  • Maximum number of recipients allowed in a personal message - This option allows you to set the maximum amount of recipients allowed in a personal message sent by a forum member. This may be used to help stop spam abuse of the PM system. Note that users with permission to send newsletters are exempt from this restriction. Set to zero for no limit.
  • Post count under which users must enter code when sending personal messages - This setting will force users to enter a code shown on a verification image each time they are sending a personal message. Only users with a post count below the number set will need to enter the code - this should help combat automated spamming scripts.
  • Number of personal messages a user may send in an hour - This will limit the number of personal messages which may be sent by a user in a one hour period. This does not affect admins or moderators.

Configure Verification Methods

  • Complexity of visual verification image(Currently CAF uses reCaptcha, therefore your selection will NOT appear on the registration page.) - This determines how complex the visual verification image is on the registration page. The higher the level of complexity, the harder it is for bots to bypass it, however it will also be a bit harder for humans to recognize the letters in the image.
    • Disabled: There is no verification image at all.
    • Very Simple: Blue angled letters appear in a white box, with no noise (dots).
    • Simple: Different colored angled letters appear in a white box also with no noise.
    • Medium: Different colored angled letters appear in a white box but noise has been added.
    • High: Blue letters appear in various fonts in both upper and lower case with angle/strikethrough variations and some noise. The image appears to be part of your theme (no white box).
  • Number of verification questions user must answer - The number of questions created by you that a user must input the correct answer to in order to complete a registration to your forum. Below this is where you input the question as well as the answer to each question you provide.

Verification Questions
Listed here is where you can configure questions and answers to verification questions for use in various circumstances (in the same places where members must enter visual verification characters into an input field). This is used to confirm that the person performing a certain action is indeed human and not a bot. You can find these questions asked on the registration page, on the post page (when the member has below a certain number of posts, defined earlier on this settings page), as well as when a guest uses the search function on your forum.

Simply input the question you want to ask in the input field under the Question column and enter a corresponding answer to the question in the input field under the Answer column.

Make the answer really obvious because it must be entered exactly the same way as it is defined by the admin. Select the Add another question link to add more input fields to add additional questions.
[Top]




Moderation
The Moderation page of the Security and Moderation section of the Administration Panel has settings that you can configure that deal with moderation related tasks of SMF. Most of these settings directly deal with the warning system of SMF.

The following options are listed on this page that involve warning levels. Warnings come into effect when one with proper permissions goes to a member's profile and selects the "Issue Warning" link on the profile sidebar menu. Here is where you can configure the percentages that are needed for having certain penalties dealt to the member, which include the following:

  • Warning level for user watch - The warning percentage that adds the user to the moderator watch list. A user put on watch is listed on the watch list in the Watched Users section of the Moderation Centerand you can view all posts made by all watched users in that section as well.
  • Warning level for post moderation - The warning percentage that will force a moderator to approve each post made by the offender.
  • Warning level for for user muting - The warning percentage that will not allow the member to post any further until his or her warning level decreases.

The other settings are as follows:

  • Maximum user warning points per day - This sets the maximum amount of points a member can acquire in one day from being warned by any single moderator.  Administrators are excluded from this restriction.
  • Warning points to decrement from users every 24 hours - If enabled, this will cause a member's points to decrease by the amount set per every 24 hours.
  • Show warning status to all users - Having this option checked will show a member's warning level to everybody else.
[Top]
Terms Of Service

Please don't PM me with support questions

Share on Facebook Share on Twitter


Offline Zerker

  • Newbie
  • *
  • Posts: 20
  • Karma: 3
  • Gender: Male
  • Project Nightfall (RSPS) <3
  • Location: England
    • View Profile
    • Project Nightfall
Re: [GUIDE] Admin CP: Security and Moderation
« Reply #1 on: August 11, 2010, 01:53:22 am »
Thanks for this, it helped me out :) .
RSN | Very Exotic

Offline The-Gamer

  • Newbie
  • *
  • Posts: 22
  • Karma: 1
    • View Profile
Re: [GUIDE] Admin CP: Security and Moderation
« Reply #2 on: March 26, 2012, 03:55:45 pm »
Question:
 
When I mute a member, is he allowed to send or receive PMs?
 
Thanks

Offline Andrew

  • Andrew at your service
  • Global Moderator
  • *****
  • Posts: 175
  • Karma: 11
  • Gender: Male
    • View Profile
    • The Tech Cadet Blog
Re: [GUIDE] Admin CP: Security and Moderation
« Reply #3 on: March 26, 2012, 09:22:43 pm »
Question:
 
When I mute a member, is he allowed to send or receive PMs?
 
Thanks

I believe muting is only for in posts. They can still send and receive PMs.
Please do not PM for support. General Support FAQ | Guides Index | Code Index

Offline Seldom Fail

  • Global Moderator
  • *****
  • Posts: 207
  • Karma: 29
  • Gender: Male
    • View Profile
Re: [GUIDE] Admin CP: Security and Moderation
« Reply #4 on: March 27, 2012, 01:51:57 am »
An alternative option would be to create a membergroup called "Muted" and change their permissions to remove the option of private messaging.
<--- Donate to CreateAForum! :D

Jeremiah 33:3

Offline Jilly

  • Newbie
  • *
  • Posts: 16
  • Karma: 0
    • View Profile
Re: [GUIDE] Admin CP: Security and Moderation
« Reply #5 on: April 11, 2012, 03:02:46 pm »
An alternative option would be to create a membergroup called "Muted" and change their permissions to remove the option of private messaging.
What a brilliant idea.  Would you also recommend this for trolls?

Offline Andrew

  • Andrew at your service
  • Global Moderator
  • *****
  • Posts: 175
  • Karma: 11
  • Gender: Male
    • View Profile
    • The Tech Cadet Blog
Re: [GUIDE] Admin CP: Security and Moderation
« Reply #6 on: April 12, 2012, 01:37:24 am »
An alternative option would be to create a membergroup called "Muted" and change their permissions to remove the option of private messaging.
What a brilliant idea.  Would you also recommend this for trolls?

Absolutely!
Please do not PM for support. General Support FAQ | Guides Index | Code Index

Offline Jilly

  • Newbie
  • *
  • Posts: 16
  • Karma: 0
    • View Profile
Re: [GUIDE] Admin CP: Security and Moderation
« Reply #7 on: April 12, 2012, 08:20:21 am »
Thanks for this.  I've set it up.   

guest1313

  • Guest
Re: [GUIDE] Admin CP: Security and Moderation
« Reply #8 on: May 30, 2012, 06:51:36 am »
I have also applied this as well. Good work!

 

Related Topics

  Subject / Started by Replies Last post
5 Replies
1633 Views
Last post August 09, 2010, 09:59:50 pm
by Alex
0 Replies
1558 Views
Last post February 17, 2012, 08:35:44 pm
by Andrew
0 Replies
1188 Views
Last post October 05, 2012, 04:05:23 pm
by Andrew
4 Replies
462 Views
Last post November 10, 2012, 12:56:15 am
by aIURbliS
2 Replies
346 Views
Last post February 28, 2016, 09:47:42 am
by Shaxee