I&#39;ve just had a three month baptism of open registration and user administration.<br><br>Registrations are driven by &quot;backlinkers&quot; in pursuit of page rank. Some registrants will comment or post with backlinks as well as pimping their sites in profiles.<br>
<br>Moderation is a must to prevent embarrassing content leaking to a sensitive audience. The burden of moderation can be mitigated by spam suppression like mollom and recaptcha.<br><br>Initially I &quot;blocked&quot; errant registrants but the profiles persist which is the primary goal of the backlinkers. I have since opted to &quot;delete&quot; rather than block. Advuser helps, &quot;prune&quot; is too crude.<br>
<br>In the medium run, I am honing an SQL query to separate the sheep from the goats preserving valued registrants meaning those who post relevant content. Hopefully that will lead to a &quot;purge&quot; module that can be &quot;cron&quot;-ed.<br>
<br>Jim<br><br><div class="gmail_quote">On Sun, Mar 21, 2010 at 10:34 AM, Scott <span dir="ltr">&lt;<a href="mailto:scott@bscottholmes.com">scott@bscottholmes.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
I just tested this and it does seem to be the case.  I tried blocking a<br>
test user by clearing the value in the password field and setting the<br>
blocked toggle while monitoring the encrypted password value in _users<br>
using mysql.  The user record was saved correctly and the encrypted<br>
password string remained the same.  I should have suspected this.<br>
Thanks.<br>
<div><div></div><div class="h5"><br>
<br>
On Sat, 2010-03-20 at 17:05 -0400, Adept wrote:<br>
&gt; On 3/20/2010 3:58 PM, Scott wrote:<br>
&gt; &gt; I&#39;m getting an error when I try to ignore the password fields.  The<br>
&gt; &gt; confirm password field is blank and the message I get is that the<br>
&gt; &gt; passwords don&#39;t match.  Therefore the user record is not updated.<br>
&gt; &gt;<br>
&gt; &gt;<br>
&gt;<br>
&gt; it&#39;s possible that if you have stored your own log-in password in your<br>
&gt; browser, that your browser is auto-filling the Password field wtih<br>
&gt; _your_ password. When making changes to another user&#39;s account, make<br>
&gt; sure *both* password fields are blank, unless you are in there to reset<br>
&gt; their password (in which case you will need to replace the contents of<br>
&gt; the Password field with _their_ password and then retype it in the<br>
&gt; Confirm Password field).<br>
&gt;<br>
&gt; make sense?<br>
&gt;<br>
&gt; kazar<br>
<br>
--<br>
[ Drupal support list | <a href="http://lists.drupal.org/" target="_blank">http://lists.drupal.org/</a> ]<br>
</div></div></blockquote></div><br><br clear="all"><br>-- <br>Rev. Jim Tarvid, PCA<br><a href="http://ls.net">http://ls.net</a><br><a href="http://drupal.ls.net">http://drupal.ls.net</a><br><a href="http://crossleft.org">http://crossleft.org</a><br>
<br><br>