28 Jan
2006
28 Jan
'06
12:59 p.m.
Op zaterdag 28 januari 2006 12:15, schreef Karoly Negyesi:
* Disabling changes to usernames and passwords of administrative users by users having administer users permission.
That would be a great one; It will solve the issue where: * any user with administer user perms can edit superuser (change pw) * then log in as superuser. * p0wn3 your site. ATM the only way around this is to simply not give anyone admin users perms; Looking forward to a patch, Bèr