News | Forum | People | FAQ | Links | Search | Register | Log in
Site Help
Posted by metlslime on 2002/12/23 18:26:17
This is the forum to ask questions about this website, report things that are broken, request features, etc.

Be sure to check out the FAQ as well.
First | Previous | Next | Last
 
#1275 posted by metlslime on 2009/01/02 11:25:10
if you have javascript enabled

disabled 
Well 
#1276 posted by Preach on 2009/01/02 14:31:08
To be honest it's probably just the browser doing something idiotic, it's beta-quality at best. So I wouldn't worry too much about it. 
Idea 
#1277 posted by Spirit on 2009/01/23 14:15:55
When replying to a fully loaded thread, just load the last 50 after submitting. Sounds like a quick fix and everybody wins (faster load for the user and less load for the server). 
Just Now 
#1278 posted by DaZ on 2009/04/16 16:59:11
Warning: mysql_connect() [function.mysql-connect]: Too many connections in /home/johnfitz/sites/www.celephais.net/board/_database.php on line 9

w00t 
DaZ 
#1279 posted by JPL on 2009/04/16 18:22:10
It happens sometimes, just reload the page and it vanishes away :) 
Hmm 
#1280 posted by nonentity on 2009/04/16 20:06:50
Or leave it for a bit and then reload the page. Spam reloading it will generate more connections and therefore probably cause the problem to occur longer (I was getting it as well, hence the GA post being the half post I wrote before copying to a text file and making dinner). 
Create_thread.php 
#1281 posted by negke on 2009/05/02 17:45:20
needs <blink> 
Metl 
#1282 posted by Spirit on 2009/06/21 14:32:27
Paaalease fix #1144/#1163 
New Tags 
#1283 posted by metlslime on 2009/06/22 07:51:56
Three new tags; see the FAQ for details.

hyperlink
strikethrough
underline 
Also, Spirit: 
#1284 posted by metlslime on 2009/06/22 08:05:47
yeah, i'll look at that stuff. 
Re: New Tags 
#1285 posted by Lardarse on 2009/06/23 15:22:46
Nice! That will make things easier. 
Yes 
#1286 posted by Spirit on 2009/06/23 16:21:05
http://vondursboobheaven.com/ 
Spirit 
#1287 posted by JPL on 2009/06/23 17:30:30
You are stupid... 
 
#1288 posted by negke on 2009/06/23 17:42:49
Hey, can we also have a popup tag? And one for flash overlays? </ddos> 
Hmm... 
#1289 posted by metlslime on 2009/06/23 21:56:37
you think that's dangerous...

<a href="javascript:alert('doh')">alert</a>

Maybe i should examine the security implications of this... 
 
#1290 posted by necros on 2009/06/23 23:47:27
tbh, i prefered it without the a href linking.

i didn't have to hover over links here to see if they are good to click or not. 
#1291 posted by czg on 2009/06/23 23:54:48
<a href="javascript:var%20v=document.forms[0];v.title.value='I%20AM%20A%20FAGGOT!';v.body.value='HUMP%20MY%20RUMP!';submitpost(v);">Click for a good time!</a> 
I AM A FAGGOT! 
#1292 posted by czg on 2009/06/23 23:54:50
HUMP MY RUMP! 
I AM A FAGGOT! 
#1293 posted by Ankh on 2009/06/23 23:57:33
HUMP MY RUMP! 
 
#1294 posted by Ankh on 2009/06/23 23:59:58
:P 
Ankh! 
#1295 posted by bamby on 2009/06/24 00:00:23
Didn't know you were too.. 
I AM A FAGGOT! 
#1296 posted by anonymous user on 2009/06/24 00:01:15
HUMP MY RUMP! 
I AM A FAGGOT! 
#1297 posted by anonymous user on 2009/06/24 00:01:33
HUMP MY RUMP! 
Well... 
#1298 posted by metlslime on 2009/06/24 00:03:04
I think all issues can be addressed.

First, the misleading URL demonstrated by spirit can be mitigated by making raw URLs look different that anchor tags, using color or other formatting.

Second, the http-based XSS attack spirit showed can be fixed by making the logout button require POST instead of GET.

Third, the javascript-based XSS attacks as demonstrated by czg can be prevented by being stricter about the URL (i.e. requiring http:/ftp: at the beginning) 
I AM A FAGGOT! 
#1299 posted by RickyT33 on 2009/06/24 00:03:24
HUMP MY RUMP! 
First | Previous | Next | Last
You must be logged in to post in this thread.
Website copyright © 2002-2024 John Fitzgibbons. All posts are copyright their respective authors.