News | Forum | People | FAQ | Links | Search | Register | Log in
Site Help
This is the forum to ask questions about this website, report things that are broken, request features, etc.

Be sure to check out the FAQ as well.
First | Previous | Next | Last
Says You. 
 
Waitasecond, Passwords Are Stored?!?! 
You guys should switch to a hash security system NOW. It's not safe to store passwords like that. 
 
it's true, so don't use the same password here as you use somewhere else. 
Just To Be Sure 
To change password, just go to "Account", type in a new one and (type it again to) confirm? 
 
Correct. I should probably make it more of an explicit process someday. 
Hashing Is Easy 
I'm pretty sure you can easily get a SHA hash generator working on this site in no time. Wikipedia has a great example,

https://en.wikipedia.org/wiki/Hash_function

Super easy to set up hashes, you just generate it and store it instead of a password on the server. The server takes the password, hashes it, stores it, and uses it for verification later. 
 
Func is php so the simple password_hash() would be the best choice. Every thing else requires knowledge.

I would be more interested in HTTPS still. 
HTTPS Would Also Be A Good Idea, 
But would be pretty hard to implement now. Honestly, SHA is super easy to implement, especially since Spirit mentioned a function just for it in php. Honestly, just a days work really. HTTPS should be a later goal, but getting rid of the password storage system should be top priority. 
Specific IPs 
...and please block Tor exit nodes IPs for non-registered users. Someone posting here through Tor usually has bad intentions. 
 
Please don't. Tor is a great tool to protect your privacy especially with func's stupid public IP display. It's no one's business. 
Yo Metl 
Go hash that shit! 
 
Just don't make a hash of it. 
 
Changing the password doesn't work, either. 
Php 
Have to check new php versions, when released they sometimes decide to depreciate some older codes, but I dont think they messed with sendmail in a while that ones too dangerous.

Gmail will sometimes reject mail unless the sender is now, IPV6 friendly..and you have IPV6 enabled on the sendmail server. I turned it off and only have IPV4 , so the mails can go thru. 
 
Nevermind. Changing the password does work after all. It just requires enabling the http referer. 
How Are You Hosting This? 
Are you using a separate webserver, or are you self hosting? 
Noobison Boa 
How I make quotes for text looking white in this website? 
<q>white Text</q> 
Be sure to check out the FAQ as well. 
Thanks! 
it works finally 
Bookmarklet To Show Images In Threads 
I love func_msgboard but since day one it's annoyed me that I have to click every single image link to actually see the image. If you're like me, create a bookmarklet and use this bit of javascript as the URL:

-----
javascript:!function(){function e(){(window.myBookmarklet=function(){$('a[href$=".gif"], a[href$=".jpg"], a[href$=".png"], a[href$=".jpg:orig"]').each(function(){var e=$(this).attr("href");$(this).replaceWith('<img src="'+e+'" width="100%" height="auto"></img>')})})()}if(void 0===window.jQuery){var t=!1,a=document.createElement("script");a.src="https://ajax.googleapis.com/ajax/libs/jquery/3.1.0/jquery.min.js",a.onload=a.onreadystatechange=function(){t||this.readyState&&"loaded"!=this.readyState&&"complete"!=this.readyState||(t=!0,e())},document.getElementsByTagName("head")[0].appendChild(a)}else e()}();
-----

(I promise this isn't spyware or anything nasty, just code to replace hrefs with images and some jQuery loading preamble.)

Load a thread, click the bookmarklet and every image link will become an inline image. 
Good Stuff FlatHead. 
 
Taking A Slash 
When you try to post a backslash, the character gets swallowed up. This makes it hard to include the Quake literal for a newline character in a string, as I tried to do in a post on using info_command_spawn. I guess it might be sanitation or html parsing getting confused. Is there any workaround possible, like allowing use of the html entity &92; 
 
based on previous bug reports, it was only the preview function that would steal your slashes.

//
Wait, Those Should Be Backslashes 
\\
1 post not shown on this page because it was spam
First | Previous | Next | Last
You must be logged in to post in this thread.
Website copyright © 2002-2024 John Fitzgibbons. All posts are copyright their respective authors.