I know there is an approved post only setting, there might be a read only or admin only posting setting. Or they might be able to just restrict write perms for the database/files which would mean everything would just throw an error on writing but reading would bd fine