Admin can not see user's profile comments.

I just visited the page of a user on our site and I can not see the user's profile comments box.  As admin I should see everything.  Isn't this correct?  If not, then this is a serious problem that I need to correct.  Even if a user has the profile comments set to friends only, as an admin I should be able to see what is being left in it.

What if a user is posting child pornography, my arse is the one that is going to be on the chopping block.  What if a user is using the profile comments to whore herself out, I need to be able to see that as I will be the one allowing prostitution rings to operate from my site and this could be bad news for me.

When I visit a user's page, I want to see everything that is on that page because my arse is the one that is going to get in trouble if I allow such things as outlined above. 

Please tell me how to fix this GREAT BIG SECURITY HOLE!

Get real. What you call a "Great big security hole", I would call an invasion of privacy.  Just make sure your members know that on your site, they have zero expectation of privacy.  There are sufficient 'report' links everywhere, if someone has their itty bitty feelings hurt.

In the highly unlikely event that your site someday has 10,000 members, what are you going to do?  Make it your life's work snooping through other peoples personal thoughts?

 Houstonlively, you need to get real.  Evidently you have no idea what the consequences could be for the owners of a site if they allow child pornography to be posted on their site.  Get real, do you really think that FaceSucks does not have a full team that works to make sure their site is not used for prostitution rings or child pornography is not posted?  Of course they do; and they regularly have to removed "bad" accounts from their site as well as reporting the users to the proper authorities.

I agree, as admin, there should be NO part of Dolphin that we do not have access to. I don't see it as an invasion of privacy, after all it IS OUR server, they're guests, as far as I'm concerned. That's like saying a landlord should NOT have the right to know if illegal things are going on at his property.

Does that mean I'm going to snoop through everyone's profiles? NO, but if I suspected something, I don't think I should NOT have the right to see what's going on. After all, if we want to see something, all we have to do is go into the database, so why not just make it simple.

Edit the following file.

templates/base/scripts/BxBaseProfileView.php

At about line 49 in the function genBlock look for this.

if($iPrivacyId != 0 && !$oPrivacy->check('view_block', $iPrivacyId, $this->iMemberID))


Edit it to look like this.

if($iPrivacyId != 0 && !$oPrivacy->check('view_block', $iPrivacyId, $this->iMemberID) && !isAdmin())

 RE:

 I refuse to live life as paranoid as you.    The FB staff does not read every single comment that is posted on their site.  It is not humanly possible.  They have a reporting system for comments, and that's what they act on.  Trying to read every single comment that is posted, is just plain stupid if you ask me. 

I'm beginning to think you're a Boonex competitor plant, sent here to be as disruptive as possible.

I think the proper way to do it is to improve the comment system a bit to work for everyone have a code detecting any malicious comment text or let say have an options enabling this and disable. So if this is enable then there is a  pop up message.

 Thanks for this!

I have no desire to spend my time going through hundreds or thousands, or if the site really grows, millions of users' sites.  However, if I receive a complaint about a user, the admins have to be able to see the content without digging through files on the server or crawling through the database.

Thanks for your help on this matter.