2016-02-01, 01:53 PM
(2016-02-01, 08:07 AM)expat Wrote: And exposing your forums to the moderators run the risk of getting hijacked like for phpfreaks
Then don't hire moderators that you don't trust, and the ones you do trust, make sure their information is secured? I don't think that's a huge deal? Moderators, like all other types of staff, are users that you're trusting to moderate and contribute on an administrative level to your forum. Moderators with minimal access to things just shows that their board owner doesn't trust them, which greatly discourages members. If you're so worried about security, then enable 2FA or another system with the same function so that it's a longer trek for someone to hack into staff accounts.
As for this feature, I would highly recommend putting it as a core feature, as like Leefish said, I also add it to every board I've used. Even if I don't intend to use it at the time, there's always the possibility, and I'd rather have it and not use it than need it and not have it. This core feature having pretty urls is also a huge plus, because it doesn't have the long end urls like "{board}.{TLD}/misc.php?page=pagename" through the page manager. Yeah, you can get around that by adding a new PHP file with it fetching the templates and adding a new page through that, it would be much more efficient and user-friendly to have it as a core feature like suggested.