Make OSSN contents installation private

Greta Kane Posted in Technical Support 4 years ago

Hello Everyone
Someone outsite my OSSN Network managed to see parts of my private network
How can i solve this issue?? It is important !!!!!!! Please help me !!!!!!!!

Replies
Romanian Piroi Doru Replied 2 years ago

Private network components

us Rishi B Replied 4 years ago

@Andrew, one possible way around that is to use this premium component (only those w/ an access code can register): https://www.softlab24.com/product/view/95/access-code

you might also find this component useful: https://www.opensource-socialnetwork.org/component/view/243/user-auto-validation (users are automatically activated upon sign up, they don't receive an email with a link that has to be clicked on)

us Andrew saltire Replied 4 years ago

The other problem is that anyone can create an account and it validates automatically by email.

gr Greta Kane Replied 4 years ago

Bansh33 Thank you so much for your reply !!!!!!!!!!!
I downloaded and installed the Private Network Component and now there is no security hole in my network !!!!

Thank you so much !!!!!!!!!!!

Tatar Steven downer Replied 4 years ago

Hello Greta,

I am not a developer involved with OSSN but I am one of a few admins in creating our own community site for users using the scripts/components.

Any security breach is a serious matter for both users and admins of any site.

Without disclosing any confidential information relating to either your users of your site, can you expand on what parts of your private network were breached (where and how?) and do you have the "Private network Component" installed?

I ask as I did have OSSN 5.0 and updated to 5.1, I would ( as would most admins I am sure) be concerned if breaches to our site could occur.

You do not say if you have the free version or the Premium version but, again, I do not work for Softlabs, (Have you also reported the issue to them?) but I could try and replicate your issue as I have v5.0 on a development machine and v5.1 shortly to be deployed as a live community site. If there is a security breach then I would like to know about it to plug it.

Thanks

us Rishi B Replied 4 years ago

it's not really a security hole since it's meant to operate that way unless you change it. There is a free component to make your site unviewable to users who have not logged in: https://www.opensource-socialnetwork.org/component/view/1564/private-network

gr Greta Kane Replied 4 years ago

My OSSN version is 5.0