User got baned for clicking edit admins.

New Member Joined: Oct 27, 2008 Posts: 11

I tried searching for forum issues but had no luck. I have a slightly pathetic issue going on. I added categories an such in the forum and when I go to the forum section its just blank. There is nothing there. First I thought it was my theme that was responsible for it but apparently not because I tried another theme that came default and the same issue occurred. So here is a screenshot of whats going on, I am really sorry if this has been talked about before and if not I hope somebody can help me.

Posted: Mon Oct 27, 2008 2:24 pm

Have you got the permissions set so everyone can view?

Posted: Mon Oct 27, 2008 2:33 pm

Yes sir. You can view it yourself over at [ Only registered users can see links on this board! Get registered or login! ]

Posted: Mon Oct 27, 2008 2:37 pm

I can see your forums, what is the problem?

Posted: Mon Oct 27, 2008 2:43 pm

Wow this is weird. Okay now I have a new problem. My internet explorer works fine for this. Now Firefox would not show the forums on this site but here is where it gets weird, I just created another website and made a forum there and it is shown through firefox. Is there somethign blocking my connection or something?

Posted: Mon Oct 27, 2008 2:45 pm

Try clearing your cache in Firefox.

Posted: Mon Oct 27, 2008 2:45 pm

Yeap that did it, Thanks for all the support guys. This was a stupid mistake on my behalf so maybe the admins can delete this topic?

Posted: Mon Oct 27, 2008 2:52 pm

Don't worry we have all been there.

We will leave the topic here to remind others. Wink

Posted: Mon Oct 27, 2008 7:15 pm

Hey guys I ran into another issue with another forum I have. One of my buddies that has super user rights given to him tried to go into the edit admins menu and got banned all of a sudden. This is the notice he got. Any idea on how I can unban him?
[ Only registered users can see links on this board! Get registered or login! ]

Posted: Mon Oct 27, 2008 8:07 pm

It's a bit of a different issue ... but the God account, or any other superuser, can go into the NukeSentinel admin module, select the Blocked IP Menu, then click Display All Blocked IPs, then remove the block for the superadmin. However, if you have the block written to .htaccess you might need to remove it from the file too.

This is one of those gotchas that drive me nutty. Everytime I add a superadmin I warn them, in CAPITAL LETTERS, DO NOT CLICK EDIT ADMINS. Inevitably, they click it and get blocked.

In a perfect world, the Edit Admin link would only be available to the God user.

Posted: Mon Oct 27, 2008 9:02 pm

CodyG wrote:

It's a bit of a different issue ... but the God account, or any other superuser, can go into the NukeSentinel admin module, select the Blocked IP Menu, then click Display All Blocked IPs, then remove the block for the superadmin. However, if you have the block written to .htaccess you might need to remove it from the file too.

This is one of those gotchas that drive me nutty. Everytime I add a superadmin I warn them, in CAPITAL LETTERS, DO NOT CLICK EDIT ADMINS. Inevitably, they click it and get blocked.

In a perfect world, the Edit Admin link would only be available to the God user.

Thank you very much, that did it Smile

Posted: Mon Oct 27, 2008 10:33 pm

I just ran into another problem =(.
I loged out of my forum and than I tried going directly to the admin login page and got baned. Now I try removing myself from the htaccess and as soon as I try to go to the admin page it bans me again, any ideas?

Posted: Mon Oct 27, 2008 10:57 pm

Have you removed yourself from the Blocked IP table? If not search the forums here. You will find out how.

Posted: Tue Oct 28, 2008 1:30 am

Well my issue is that I am the GOD on the website and I myself am baned. I do not want to share my login information with anybody. And when I search on here for unbaning or anything of that matter, i always get the same results.

Also, I delete myself from the htaccess but than get baned right away again for going to admin login page.

Posted: Tue Oct 28, 2008 2:46 am

You need to ensure your IP is not in the database, because it saves it there as well as in the .htaccess file.

This could also be the cache in Firefox again, so please clear your cache and try again.

Once you are back in make sure you are shown as protected in Sentinel. This should make sure your IP isn't added to the .htaccess and database. Although you will still receive a message it shouldn't ban your IP.

BTW Please use a new post for new questions and don't change the topic titles unless it is to make it more descriptive for the original problem. This helps other users to search for problems. Thank you

Posted: Tue Oct 28, 2008 5:54 am

I'm thinking maybe we should create a Mantis issue for this. If you are not the superuser (God admin) and you click Edit Admins you could get banned so why even show the link to none super users?

Posted: Tue Oct 28, 2008 6:09 am

If at all possible.... I'll vote for making Edit Admins only visible to the God account. It seems those superusers, despite my clear warnings, just can't keep their fingers off that which they should keep their fingers off. The temptation is just too great.

Posted: Tue Oct 28, 2008 6:54 am

I have created an Mantis issue for it Smile

Posted: Wed Oct 29, 2008 9:13 pm

If you guys are still looking for a solution for this here is what I have done.
Open admin.php and find lines 204-226:

Code:

function adminmenu($url, $title, $image) {


   global $counter, $admingraphic, $Default_Theme;


   $ThemeSel = get_theme();


   if (file_exists('themes/'.$ThemeSel.'/images/admin/'.$image)) {


      $image = 'themes/'.$ThemeSel.'/images/admin/'.$image;


   } else {


      $image = 'images/admin/'.$image;


   }


   if ($admingraphic == 1) {


      $img = '<img src="'.$image.'" border="0" alt="'.$title.'" title="'.$title.'" /></a><br />';


      $close = '';


   } else {


      $img = '';


      $close = '</a>';


   }


   echo '<td align="center" valign="top" width="16%"><font class="content"><a href="'.$url.'">'."$img<b>$title</b>$close".'<br /><br /></font></td>';


   if ($counter == 5) {


      echo '</tr><tr>';


      $counter = 0;


   } else {


      $counter++;


   }


}

Replace it with this:

Code:

function adminmenu($url, $title, $image, $godskip = 0) {


   global $aid, $counter, $admingraphic, $Default_Theme, $prefix, $db;


   $ThemeSel = get_theme();





   $row = $db->sql_fetchrow($db->sql_query('SELECT name FROM '.$prefix.'_authors WHERE aid=\''.$aid.'\''));


   $adminname = $row['name'];


   


   if ($godskip == 1 && $adminname != 'God') {


      $skip = 1;


   } else {


      $skip = 0;


   }


   


   if ($skip == 0) {


      if (file_exists('themes/'.$ThemeSel.'/images/admin/'.$image)) {


         $image = 'themes/'.$ThemeSel.'/images/admin/'.$image;


      } else {


         $image = 'images/admin/'.$image;


      }


      if ($admingraphic == 1) {


         $img = '<img src="'.$image.'" border="0" alt="'.$title.'" title="'.$title.'" /></a><br />';


         $close = '';


      } else {


         $img = '';


         $close = '</a>';


      }


      echo '<td align="center" valign="top" width="16%"><font class="content"><a href="'.$url.'">'."$img<b>$title</b>$close".'<br /><br /></font></td>';


      if ($counter == 5) {


         echo '</tr><tr>';


         $counter = 0;


      } else {


         $counter++;


      }


   }


}

Open links.editadmins.php and find line 18:

Code:

adminmenu($admin_file . '.php?op=mod_authors', _EDITADMINS, 'authors.gif');

Replace it with this:

Code:

adminmenu($admin_file . '.php?op=mod_authors', _EDITADMINS, 'authors.gif', 1);

I think this is the best solution because if you ever wanted to exclude any other options all you have to do is edit the appropriate links file and add the 1 to the adminmenu function call.

Posted: Thu Oct 30, 2008 9:51 pm

How can i unban myself if I am baned from the website? I am the only god there so nobody else can do it. And another thing, I took my stuff out from my htacess file and still same problem. I am really without any choices not except to redo the whole forum? Sad

Posted: Thu Oct 30, 2008 10:19 pm

You will need to clear yourself from the blocked table in the database using phpMyAdmin

Posted: Thu Oct 30, 2008 11:00 pm

Is that some kind of plugin or website? Sorry I dont know much about this stuff.

Posted: Fri Oct 31, 2008 1:37 am

Usually phpMYadmin is available through cPanel if you are using that for hosting.

Posted: Fri Oct 31, 2008 3:08 am

Awsome, that worked. Thansk for all the help guys.

Regular Joined: Aug 06, 2008 Posts: 65

Hello, I would like to offer my solution to this issue.

Open admin\links\links.editadmins.php

change code to:

Code:




if (!defined('ADMIN_FILE')) {


   die('Access Denied');


}


global $admin_file, $admin;


if ($radminsuper == 1) {





$sql = 'SELECT aid, name FROM ' .$prefix. '_authors WHERE aid=\'' .$aid. '\'';


$result = $db->sql_query($sql);


while ($myrow = $db->sql_fetchrow($result))


$isadmin = stripslashes($myrow['name']);





if ($isadmin=='God') {





   adminmenu($admin_file . '.php?op=mod_authors', _EDITADMINS, 'authors.gif');





}





}

All other admins, whether super or not, will not see the edit admin button.