Have you looked at User Pages? You can download it at: <a href="http://www.herve-thouzard.com/">http://www.herve-thouzard.com/</a>

"Hijacking" is when spammers start posting to your Shoutbox, forum, guestbook, comments, etc. for their own means and ends, and not those of your website. It can be quite a problem, and more than a little annoying as you watch things fill up with posts for sex sites, real estate scams, and other such nonsense.

What I would like to see is a birthday module that emails the user a birthday greeting if they have opted to get emails.

I know 2.014 is considered the last stable version, but I personally use 2.2.3. I have found very few modules that do not work on it. Indeed, there are more I found that do not work on 2.014. WordPress ME did not work for me (I was getting blank screens, although Xpress does. That is the only module problem I had either than some of the calendar modules (I use pical myself).

Sounds like they were either spammers, looking for something to spam, or hackers. What user-agents were they using? Was it some sort of spider, or standard browser? That could give you an idea what they were trying to do.

If you do re-install, remember to backup the mainfile.php, and the MySQL database, and any themes you have modified. Otherwise, you will wipe everything out.

There are several ways to do this. Perhaps the easiest is if you want a static center, is to create a custom block using the iframe tag in html to load an outside page. You could then rotate articles, by simply placing a different page in the iframe tag.

Another way is to download on of the modules for this purpose. There are several at: https://xoops.org/modules/repository/viewcat.php?cid=95 that allow you to rotate articles in a block.

I don't know of others, but I use pical. I like it for its simplicity. It is easy to use, and I like the notification feature. The only additional feature I would like to see is a reminder function, so that folks can be reminded of events ala Yahoo's calendar on My Yahoo.

I wouls say use a "Terms of Use" or "Conditions of Use" page might as well as a splash page and the ICRA. Usually, these are used to enforce copyright by saying the site cannot be displayed in frames and so forth, but you could add, "I acknowledge I am over 18, and if I am offended by this material I am free to go to another site." Below, is a "Conditions of Use" statement I use. As it is a shopping site and nothing offensive I have not included any such statements, but it will give you an idea:

"We grant you a limited license to access and make personal use of this site. Please do not download (other than page caching) or modify it, or any portion of it, without the express written consent of __________________. This license does not include any resale or commercial use of this site or its contents; any collection and use of any product listings, descriptions, or prices; any derivative use of this site or its contents; any downloading or copying of account information for the benefit of another merchant; or any use of data mining, robots, or similar data gathering and extraction tools. This site or any portion of this site may not be reproduced, duplicated, copied, sold, resold, visited, or otherwise exploited for any commercial purpose without express written consent of Engle Traders.You may not frame or utilize framing techniques to enclose any trademark, logo, or other proprietary information (including images, text, page layout, or form) of ______________________. without written consent. You may link to the home page of ________________________, so long as the link does not portray ______________, or our products or services in a false, misleading, derogatory, or otherwise offensive matter. Use of this site consitutes agreement to these terms. If any part of this agreement is violated in any form, we may end your account"

I use captcha on some of my other sites to protect guestbooks. It works well for that, and as yet no spambots have broken through.

Another method is to block the spambots in your .htaccess file. You can find lists of spambots on the net, just goolge "spam bots htaccess." I found this to protect a search engine from spamming for about six months. If another spambot comes along, just add it to the list, and the problem is solved.

Though the only sure fire way is to require a login.