2012-04-22, 11:03 PM
Hi,
everybody can freely access the ACP login page here: http://community.mybb.com/admin/
This always have bugged me. Then I thought why not add a bit more security to the ACP? I was thinking of an optional security question that only admins know and that unlocks the ACP login screen when answered correctly.
To prevent the admins from always having to answer the security question, you can use cookies that never expire. I think you get the idea. What is your opinion of this? And if this won't be implemented in future MyBB versions, can anyone tell me how I can code this/can someone code this for me?
Best regards
everybody can freely access the ACP login page here: http://community.mybb.com/admin/
This always have bugged me. Then I thought why not add a bit more security to the ACP? I was thinking of an optional security question that only admins know and that unlocks the ACP login screen when answered correctly.
To prevent the admins from always having to answer the security question, you can use cookies that never expire. I think you get the idea. What is your opinion of this? And if this won't be implemented in future MyBB versions, can anyone tell me how I can code this/can someone code this for me?
Best regards