Random member – security query
I was a little surprised to note that, with the admin bar enabled, a visitor who’s not logged in to my site can successfully visit a random member. As far as I can tell there’s no way of turning this off. Granted, they don’t get a link to the member’s e-mail address; but I can think of plenty of people who would be uncomfortable about even just their name being available to all and sundry. (And that’s not to mention danger for children online, etc … )
Now of course you can turn this off by simply selecting the general setting to hide the admin bar from anyone not logged in. But that hides other stuff that would be useful to have sometimes. So I’d like an optional setting to block this access. Maybe it could be done by making the hide admin bar setting more sophisticated – so you can select parts of it to show or hide from users who are not logged in?
You must be logged in to reply to this topic.