Seeing that I should block / delete / rollback one user was easy: that
one was just engaged in destructive play. The case of another new user,
Cbrooks1960, is not so clear.
This is where I get a little frustrated with the lack of tools around
this shop, compared to the commercial (time-sharing) sites where I did
this for pay. For one thing, I could tell at a glance if the user was
currently on-line, and if so, from where. I could watch an on-line user,
to see what the user was /trying/ to do, not just what succeeded.
(There, the users were, as a rule, simply having trouble; I'd send a
note, like "You need the password for that file, /PW=", which would
help.) Here, all I can find out is that C..1960 uploaded one PDF file,
not relevant to anything AFAIK.
The kind of info I'd like to pull out of the DB is, "Does this user have
a validated email address?" Then, for a blocked user, I'd check up on
the ISP address (IMHO, privacy concerns have been forfeited by a blocked
user), and send a "You have a malicious customer" note to the ISP.
Usually, they cancel accounts for that.
For this questionable user, I would likely send a direct email, like "If
you are just testing something with your file [file link], please
remember to delete it when you are done." (Without a valid email address
for the user, I'd block / delete.)
It would also be handy to be able to compare the email address with
those on the block log, and/or other User names, ditto the IP address,
to detect persistent pests. The search could probably be done without
ever showing the actual address or IP address, to preserve privacy.
FYI, I'm still studying PHP, slowly ( /anything/ to get away from C++),
so I may be in a position to take a look at that unfinished extension,
the one which allows script execution (but DHYB).
--
/tj/
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
