| Advanced Search : Site Statistics : Directory : Web Resources : Forum |
|
|  |
|
|||||||||||||||||||||||||||||||||||||||
Home
Bugs
File Download
CVS Tree
Mailing Lists
|
| Copyright © 2008 Plugins for Geeklog All trademarks and copyrights on this page are owned by their respective owners. |
Powered By Geeklog Created this page in 0.15 seconds |
Thank-you very much.
The very simple bug fix I pointed out in the bugtracker wasn't included. I guess you didn't see it. So, I'll repost it here.
The Stats Plugin (previous and latest releases) do not restrict access to root users. The problem lies in the third expression in this line of code located in index.php:
if ((!SEC_inGroup('Root')) && ($_ST_anon != 1) && (SEC_hasRights('stats.admin'))) {
As written, this line will always evaluate to FALSE thus everyone can always view the site's stats. To fix the problem the last expression needs to have a ! in front of it. The corrected line should be changed to read:
if ((!SEC_inGroup('Root')) && ($_ST_anon != 1) && (!SEC_hasRights('stats.admin'))) {
Althought this is a very minor fix, it will restrict access to root users as you all originally intended.