Why all the users are entitled to upload?
In upload.php
if ($CURUSER["uploadpos"] == 'no')---->it is so, all classes of users are entitled to upload (users, power user, uploader, moderator, administrators, sysop)
if ($CURUSER["uploadpos"] == 'yes')--->when it is absolutely no one is entitled to upload (users, power user, uploader, moderator, administrators, sysop)
My question is: How to make only uploader class can have access to upload.php ,because can not have confidence in users class to let them uploading all crap. I Use :
http://bvlist.com/torrent-strike/117...a.html#post145
Sorry for my English