SMF Support > SMF 2.0.x Support

Admin login time?

<< < (2/2)

Shambles:
To turn it off?

Admin > Configuration > Security & Moderation > General

then tickle  "Disable administration security"

Be mindful of what Arantor says, though, regarding your Admin session being at risk of compromise.

The "help" button alongside that option says


--- Quote ---This disables the additional password check for the administration section. This is not recommended!
--- End quote ---

Good luck  8)

Rivet:
OK, thanks. 

If it is not recommended, I will leave it on.  Out of curiosity, why is this something that is recommended to be left on?  I mean, is the risk physical access to the box or something else?

Arantor:
I thought I'd already explained this earlier in this thread... but I guess I can do so again.

If your session details are leaked for whatever reason, there is a finite amount of damage a hacker can do by having your session. Most sensitive actions will require the secondary check, so that the worst actions are prevented if the session is compromised.

Rivet:
Thanks for the confirmation.

Navigation

[0] Message Index

[*] Previous page