October 15, 2018, 08:17:14 PM
collapse

* Site Menu

Security and Moderation Settings Pt. 1

These are some of the most important settings to help you fight against spammers, hackers and trouble makers.
 
The green "Check" listing tells you what setting you should check or have ticked.
 
The red "Uncheck" tells you what should be uncheck or have unticked.
 
The bold "Other" is for settings that do not have a checkbox and will be explained in detail.
 
1.  Go to Admin -> Configuration -> Security and Moderation -> General:
 
Check:
 Do not reveal contact details of members to guests - Obviously, with this set you will not allow guests to view personal info about your users. This is a VERY good thing!
 
Enable error logging - Turns your forum's error log on so you can keep track of what is going wrong with your forum.
 
Require reactivation after email change - A new activation e-mail will automatically be sent to the new e-mail address.
 
Enable reporting of personal messages - Allows members to report troublesome users, spammers who send spam via PM, etc.
 
Uncheck:
 Allow viewable email addresses - Checking this will allow the email addresses of your users to be seen by normal users and guests (bots, spammers, etc.) This does not override the setting in a user's profile. It is highly suggested that you tell your users to not allow others to view their email address or it will be made public.
 
Disable administration security - Leaving this unchecked, requires an additional password when entering the admin section. If you have moderation logging enabled, whoever logs into the admin will be added to the log and any changes they make will also be logged. This is good when you have other admins/staff and want to see what they are doing or have done recently.
 
Other:
 Failed login threshold - The number provided here will send a user to the Password Reminder screen after so many failed attempts. The default is 3.
 
Required strength for user passwords - The 3 settings are low, medium and high. I highly suggest that you set it to medium (cannot use your user name in your password) or high (must use a mixture of different characters to make it harder to decipher). Your choice.
Page created in 0.045 seconds with 13 queries.