Topic: Batch Add (Read 3533 times)

rtenny · « **on:** May 30, 2005, 06:26:17 pm »

Why can only admin use the batch add feature?? The manual just states "for securitz reason". I have my own dedicated server and only familiy members can use ist. I don't want to make them all "administrators". Is there another way?

Tranz · « **Reply #1 on:** May 30, 2005, 06:28:56 pm »

mmm... if you don't understand the security implications, maybe you should not be maintaining your own server...

rtenny · « **Reply #2 on:** June 03, 2005, 01:11:49 am »

Quote from: TranzNDance on May 30, 2005, 06:28:56 pm

mmm... if you don't understand the security implications, maybe you should not be maintaining your own server...

this really help, thanks.

already reprogrammed the code so no need to answer.

Tranz · « **Reply #3 on:** June 03, 2005, 05:56:29 am »

I thought I was helping. Maybe it wasn't very obvious... but it's like when someone says they have trouble seeing, and I'd suggest maybe they shouldn't drive... It's not something they want to hear but it's for their own good.

Joachim Müller · « **Reply #4 on:** June 03, 2005, 07:02:26 am »

chaning the coppermine code to allow everyone to batch-add is easy, but means that you have to allow users to ftp-upload, which is a huge security risk. Given just the url of your pgae any script kiddie can easily take over or break your site in one minute. This is why you shouldn't do that. It should be obvious that non-admins don't have ftp access. This is the reason why Thu suggested not to do what you're doing.

News:

Author Topic: Batch Add (Read 3533 times)

rtenny

Batch Add

Tranz

Re: Batch Add

rtenny

Re: Batch Add

Tranz

Re: Batch Add

Joachim Müller

Re: Batch Add