There are two things I'd like to accomplish. They are certainly not critical and probably overkill, but useful to me if readily available.
For context, I've built a small private board for communication among the managers and stakeholders of a family business. Although none of the content is critical and no personal identifying information is stored there, some members are nevertheless concerned about security. I'm comfortable we've implemented sufficient measures to protect the information but I'd like to have a couple of other capabilities for security and management purposes.
First, it is important from time-to-time to be able to determine whether someone reviewed certain information. I installed the dmz extension
"Who Visited This Topic " which gives me a list of visitors to each topic, but it doesn't tell me
when each visit occurred. That's important because I can't tell if the visit was before or after certain material was posted. I asked the developer of that extension how to get that information but they haven't responded. A stored table would presumably contain that data.
Second, I'd like to know if a user logs in from a suspicious IP address or a different geographical location, and be able to review their login history over time. I have the IP validation set to ABC in the ACP but I'm not sure what that does. From the perspective of impact on the server, the site has a very small number of registered users and guests and bots have no access, so triggering a write each time someone logs in wouldn't impose a significant burden.
I'm just beginning to understand a little about how phpBB works, but other than editing a few files, so far I'm limited to what I can do through the GUI including extensions. The coding is foreign to me at this point, but I hope over time I'll be able to do some things myself. Any thoughts you might have would be appreciated.