Pick your staff members wisely. You give them access to more commands which allows them to harm your site.

Once they are a moderator they can ruin the mood on your site, they can mass delete posts if they have the permission and they can edit the posts of existing members. Super moderators can do this in every forum.

Super Moderators and Moderators have access to the modcp/ directory, but not the admincp/ directory.

If you give someone Administrator access on your forum you basically give them full access to your site (except for FTP). They can download your database or delete forums and usergroups, delete threads and posts or change settings, etc. So check your admin permissions on a per admin user. And think twice before you give someone admin access to your forum.

Link > Administrator Permissions

Tip: I don't recommend to give other admins access to the phpmyadmin or ftp or control panel of your site, and especially not to the members area on vbulletin.com (Because giving someone else access to your members area means they can take over your vbulletin account; Also note that the vbulletin staff will never ask you for your customer password in full)

Tip: For added security check the control panel log history and set up password history so important usergroups are more secure by having to change their password once in a while. And request them to use a hard to guess password.
kamrul Reviewed by kamrul on . How To Make My Forums More Secure Here's some things you can do to increase the level of security for your forums: 1. Always upgrade to the latest stable version. 2. Do not install any unofficial hacks or plugins as they are not written or reviewed by our developers. 3. Password protect your Administrator and Moderator Control Panels directories using .htaccess/.htpassword http://www.javascriptkit.com/howto/htaccess3.shtml 4. Make sure the tools.php (vB3) file is NOWHERE on your website. Rating: 5