Advertisement:

Author Topic: [Trick] Administrate Yourself  (Read 54162 times)

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
[Trick] Administrate Yourself
« on: March 09, 2011, 02:01:05 AM »
I know I made a topic for this a while ago, but things have changed enough, that I decided to just start a new topic.

A long time ago, I decided to make a script for people who needed to administrate themselves, if they lost their main account, or for some reason it was un-administered..

I decided it was finally time to update it, so here it is.

Here are the features I worked in to this version.
  • Works on all themes
  • Follows forums width
  • Validates session
  • Pushes guests to a login form
  • Error notifications
  • Success notification
  • Uses a "language" function, for easy translation
  • Separates Source from Display
  • Redirects Administrators

Note: This does not work on XAMPP if you don't have a password setup, sorry Ha2. :P

Right now, it only will work with the SMF 2.0 series, and has validation to stop it from being run on SMF 1.1x series.

Although I wrote this version with the mindset of eventually backporting it to 1.1x.

Screenshots and zip attached.

To use, simply download "administrate.php" and upload it to the same directory as your forums SSI.php, then visit in your browser.

Enjoy,
Labradoodle-360
« Last Edit: July 16, 2011, 11:51:40 PM by Labradoodle-360 »

Offline texasman1979

  • Full Member
  • ***
  • Posts: 497
  • Gender: Male
  • hello
Re: [Trick] Administrate Yourself
« Reply #1 on: March 09, 2011, 09:21:47 AM »
Just to double check, does this check to see if the account was at one time an admin? How would it prevent a would be hacker from gaining access? Or is it like install.php, intended to be removed after use?
SMF 2.0.4
SimplePortal 2.3.5

LOGIC is a FOUR letter word! :)


Offline Arantor

  • Resident Overthinker
  • SMF Friend
  • SMF Legend
  • *
  • Posts: 72,649
    • StoryBB/StoryBB on GitHub
Re: [Trick] Administrate Yourself
« Reply #2 on: March 09, 2011, 09:23:12 AM »
It requires the database password, which it checks for.
Please don’t PM me for paid work, I’m not for hire, and even if I was, I doubt you could afford me.
USD$150 per hour. Typical waiting list 3 months.

Offline texasman1979

  • Full Member
  • ***
  • Posts: 497
  • Gender: Male
  • hello
Re: [Trick] Administrate Yourself
« Reply #3 on: March 09, 2011, 09:29:17 AM »
Ah kk. Sounds like a pretty good deal. Lab you come up with some pretty good stuff. :) maybe i can get you to check my site out and me some thoughts, maybe we can put our heads together on something sometime.
SMF 2.0.4
SimplePortal 2.3.5

LOGIC is a FOUR letter word! :)


Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #4 on: March 09, 2011, 11:28:27 AM »
Sure, feel free to shoot me a pm.

Moved to Tips and Tricks :)
« Last Edit: March 09, 2011, 01:12:04 PM by Labradoodle-360 »

kat

  • Guest
Re: [Trick] Administrate Yourself
« Reply #5 on: March 09, 2011, 01:21:17 PM »
Useful for people who don't have an emergency admin account, I'd imagine. :)

Always the first thing I do, when I start a forum, that.

Make myself another admin account.

Hmmm... Thinking about it, I might just suggest that as a future feature. :)

Offline Arantor

  • Resident Overthinker
  • SMF Friend
  • SMF Legend
  • *
  • Posts: 72,649
    • StoryBB/StoryBB on GitHub
Re: [Trick] Administrate Yourself
« Reply #6 on: March 09, 2011, 01:23:08 PM »
I'd actually discourage having more admin accounts than necessary... no point in having two separate accounts that can be brute-forced, it's more points of failure.
Please don’t PM me for paid work, I’m not for hire, and even if I was, I doubt you could afford me.
USD$150 per hour. Typical waiting list 3 months.

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #7 on: March 09, 2011, 01:23:23 PM »
There's no need to with this script :P All you have to do is know the database password.

kat

  • Guest
Re: [Trick] Administrate Yourself
« Reply #8 on: March 09, 2011, 01:38:47 PM »
Fairy nuff! :)

Offline DoctorMalboro

  • SMF Hero
  • ******
  • Posts: 9,084
  • Gender: Male
  • うまいいいいいい!!!!!
    • @DoctorMalboro on Twitter
    • Personal website
Re: [Trick] Administrate Yourself
« Reply #9 on: March 09, 2011, 05:24:18 PM »
I've always wonder why SMF let administrators delete their own account, I mean, all permissions shouldn't always mean ALL permissions.

Offline NanoSector

  • SMF Friend
  • SMF Super Hero
  • *
  • Posts: 10,500
  • Gender: Male
  • VC321xb47@aperture:~#
    • Yoshi2889 on GitHub
Re: [Trick] Administrate Yourself
« Reply #10 on: March 09, 2011, 05:34:27 PM »
I've always wonder why SMF let administrators delete their own account, I mean, all permissions shouldn't always mean ALL permissions.
Lol, good point.

And nice script. Might use it when I am being stupid again and I remove my admin rights (again :P).
My Mods / Mod Builder - A tool to easily create mods / Blog
"I've heard from a reliable source that the Answer is 42. But, still no word on what the question is."

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #11 on: March 09, 2011, 05:36:45 PM »
This might sound quite contradicting to the purpose of this script, but during development of 1.0, I made a script called "unadministrate.php" which actually does the opposite of this, except it was very crude, with no validation whatsoever. :P

Offline DoctorMalboro

  • SMF Hero
  • ******
  • Posts: 9,084
  • Gender: Male
  • うまいいいいいい!!!!!
    • @DoctorMalboro on Twitter
    • Personal website
Re: [Trick] Administrate Yourself
« Reply #12 on: March 10, 2011, 06:31:22 PM »
I would call it "New admin account for morons", but it would be to harsh :P

Offline ysNoi

  • Jr. Member
  • **
  • Posts: 139
  • Gender: Male
  • I'm For DeMolay Alone
    • pHForums™
Re: [Trick] Administrate Yourself
« Reply #13 on: August 14, 2011, 02:46:55 AM »
Hi...

I forgot my Administrator password. I tried to upload administrate.php file as instructed above but I could not get to the "Administrate Yourself" page...
Can someone help me please...

Thanks,
ysNoi
"Don't fix it if it ain't broken, don't break it if you can't fix it."

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #14 on: August 14, 2011, 02:54:48 AM »
Administrate Yourself does not recover an admin password.

It would allow you to create a new account, and then run this file, to make that account an administrator however.

Offline Shadow Queen

  • Jr. Member
  • **
  • Posts: 184
  • Gender: Female
    • My Kingdom
Re: [Trick] Administrate Yourself
« Reply #15 on: September 06, 2011, 11:08:31 PM »
Sound a good idea to use.  In cause it something happen like this.

Offline Hj Ahmad Rasyid Hj Ismail

  • SMF Hero
  • ******
  • Posts: 4,916
  • Gender: Male
  • Busy mode is on.
    • ahmad.rasyid.ismail on Facebook
    • ahrasis on GitHub
    • ahrasis on LinkedIn
    • @ahrasis on Twitter
    • ElkArte Malaysia
Re: [Trick] Administrate Yourself
« Reply #16 on: September 12, 2011, 10:13:23 PM »
Nice job. I think it should be integrated with repair_settings.php. But standalone is also nice.

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #17 on: September 12, 2011, 11:05:23 PM »
I personally prefer it standalone, although in my opinion repair_settings.php needs a re-write too. So you never know.

Maybe combine a bunch of scripts together into a new section and name it "tools.php" or something.

If I were to re-write this, I would allow you to also create a new account, I saw somewhere that was the case for some, that they couldn't even create a new account, it'd be simple to add too.

Offline Hj Ahmad Rasyid Hj Ismail

  • SMF Hero
  • ******
  • Posts: 4,916
  • Gender: Male
  • Busy mode is on.
    • ahmad.rasyid.ismail on Facebook
    • ahrasis on GitHub
    • ahrasis on LinkedIn
    • @ahrasis on Twitter
    • ElkArte Malaysia
Re: [Trick] Administrate Yourself
« Reply #18 on: September 13, 2011, 12:06:11 AM »
Indeed. Creating a new account is also important especially with your tricks. I can't imagine how they're going to use this trick when they don't have a user account and can't create a new one.

I really think that SMF should create a protection to all admin account where it either cannot be deleted at all or can be deleted only by superadmin (preferably only one superadmin user and prerably only user #1 to avoid conflict).

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #19 on: September 13, 2011, 11:04:45 AM »
It somewhat does, you cannot delete the Administrator if it's the only admin account, so really, there has to be one base admin.

Offline Shadow Queen

  • Jr. Member
  • **
  • Posts: 184
  • Gender: Female
    • My Kingdom
Re: [Trick] Administrate Yourself
« Reply #20 on: September 13, 2011, 02:11:28 PM »
When this happen? I can just log into the cpanel and upload the file. whatever this topic said to do?

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #21 on: September 13, 2011, 02:12:38 PM »
What do you mean? Not a very clear post.
When this happen? I can just log into the cpanel and upload the file. whatever this topic said to do?

Offline Branko.

  • SMF Hero
  • ******
  • Posts: 3,330
  • Gender: Male
  • U zemlji slijepih, jednooki je kralj
    • SATForum
Re: [Trick] Administrate Yourself
« Reply #22 on: September 13, 2011, 02:57:11 PM »
When this happen? I can just log into the cpanel and upload the file. whatever this topic said to do?
Labradoodle-360 is always precise when explaining something....   ;D  Read the first post again
Strong people don't put others down, they lift them up.
A clever person solves a problem. A wise person avoids it.

Offline Shadow Queen

  • Jr. Member
  • **
  • Posts: 184
  • Gender: Female
    • My Kingdom
Re: [Trick] Administrate Yourself
« Reply #23 on: September 13, 2011, 04:33:11 PM »
I mean when this happen to the main account holder of the forum. You just upload the file to the same place as the SSI.php file?

Sorry, It's was my faulth about the unclear post I made :)

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #24 on: September 13, 2011, 04:37:38 PM »
When anyone who has the database password needs their account administrated, they can use this file in the same directory as SSI.php.

Offline Shadow Queen

  • Jr. Member
  • **
  • Posts: 184
  • Gender: Female
    • My Kingdom
Re: [Trick] Administrate Yourself
« Reply #25 on: September 13, 2011, 05:28:31 PM »
Oh ok.

When that happen I just do what I needed to do.

And the main account holder become admin.

Neat tick

Offline ~Dragon~

  • Jr. Member
  • **
  • Posts: 301
  • Gender: Male
Re: [Trick] Administrate Yourself
« Reply #26 on: October 21, 2011, 04:20:35 PM »
Good Job I learn it :D
Please do not PM or email, Thank respond please post fast to SMF!

Offline cicka

  • Sophist Member
  • *****
  • Posts: 1,280
  • Gender: Female
Re: [Trick] Administrate Yourself
« Reply #27 on: August 11, 2012, 12:35:20 PM »
Sorry to bump this old topic but I wanted to say thank you to Labradoodle-360 for this script. I learned a few things simply by reading the code.

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #28 on: August 11, 2012, 01:09:33 PM »
No problem, and wow, I take that as a big compliment from you, thank you for the kind words! :)

Offline cicka

  • Sophist Member
  • *****
  • Posts: 1,280
  • Gender: Female
Re: [Trick] Administrate Yourself
« Reply #29 on: August 11, 2012, 01:33:29 PM »
No problem, and wow, I take that as a big compliment from you, thank you for the kind words! :)

You are very welcome :)

Offline DEANO3528

  • Semi-Newbie
  • *
  • Posts: 55
Re: [Trick] Administrate Yourself
« Reply #30 on: January 08, 2014, 04:38:16 PM »
REally sorry to bump this after so long, but I've read this and not being a super-whizz with the tech stuff, I wanted to ask a question:
Does this trick only work once administration rights have been removed/lost?
I have uploaded it to the correct directory (same as SSI.php) but nothing happened. So I wondered if I don't actually install it unless I already lost admin rights?
Sorry again for the idiot question and bump.

Offline Matthew K.

  • SMF Super Hero
  • *******
  • Posts: 12,430
  • Gender: Male
    • matthew.kerle on Facebook
    • @matthew_kerle on Twitter
Re: [Trick] Administrate Yourself
« Reply #31 on: January 08, 2014, 04:50:18 PM »
Not a problem. This is in case you lose your administration rights. It just modifies your id_group in the database automatically for you.

Offline DEANO3528

  • Semi-Newbie
  • *
  • Posts: 55
Re: [Trick] Administrate Yourself
« Reply #32 on: January 08, 2014, 06:36:11 PM »
Ok many thanks for that. I will delete until it might be needed.
Really wish SMF would auto-protect #1 member, but hey-ho.

Offline Arantor

  • Resident Overthinker
  • SMF Friend
  • SMF Legend
  • *
  • Posts: 72,649
    • StoryBB/StoryBB on GitHub
Re: [Trick] Administrate Yourself
« Reply #33 on: January 08, 2014, 06:38:58 PM »
Protect it against what, exactly? SMF won't let you remove group 1 from any member unless the person doing it is also in group 1, and it won't let you remove group 1 from a user if that user is the only group 1 user. What's left to protect?

On the other hand, what happens if you leave the forum and sell it on? If user 1 is auto protected, that option becomes impossible.
Please don’t PM me for paid work, I’m not for hire, and even if I was, I doubt you could afford me.
USD$150 per hour. Typical waiting list 3 months.