| View previous topic :: View next topic |
| Author |
Message |
James
3run
Joined: 19 May 2003
Posts: 3756
|
 Posted: Fri Apr 02, 2004 8:43 am Post subject: How this works |
 |
|
This forums will be used for 3 things:
1) For me to post a link to a demo of a mod that I like to look of, and you tell me whether you think it should be added or not. These will have "[Possible]" at the beginning.
2) For me to tell you when I have added mods. These will have "[Added]" at the beginning.
3) For you to request mods. Please add "[Request]" at the beginning of these.
Oh yeah, and once I have added a mod, the [Possible] topic will be closed, and an [Added] one will be open where you can discuss the mod.
_________________
 |
|
| Back to top |
|
 |
Indie Skater
Moderator
Joined: 26 May 2003
Posts: 768
Location: UK
|
| Posted: Fri Apr 02, 2004 6:22 pm Post subject: |
|
|
Cool. Is BBW a mod?
_________________
Feel my wrath!
 |
|
| Back to top |
|
|
James
3run
Joined: 19 May 2003
Posts: 3756
|
| Posted: Fri Apr 02, 2004 6:31 pm Post subject: |
|
|
Ha. No.
_________________
|
|
| Back to top |
|
|
GPHemsley
Moderator
Joined: 18 Jul 2003
Posts: 430
Location: Long Beach, NY
|
| Posted: Tue Apr 06, 2004 8:36 pm Post subject: |
|
|
Frankly, I think you should start over with a fresh/vanilla install of phpBB before you go adding all of these MODs.... You're 4 and a half releases behind!
_________________
Gordon P. Hemsley
A Link to the Past • CMSformE
 |
|
| Back to top |
|
|
James
3run
Joined: 19 May 2003
Posts: 3756
|
| Posted: Wed Apr 07, 2004 6:11 am Post subject: |
|
|
| http://www.johnabela.com/forums wrote: |
I have taken my forums offline for the moment. It seems the developers of phpBB can't seem to take security too seriously. In the last month they've had to release 3+ versions to fix security issues.
That's simply unacceptable in my book. Furthermore, I don't have the time to keep-up with upgrading their patches every week.
Sorry everyone, but until I find a viable alternative, forums are offline.
Update: 3/28/2004 : Now we are at 4 (or is it 5??) security fixes... rumor has it they just released another fix this morning.
Update: 3/30/2004:
I received the following email today. I'll not mention who sent it to me, because I happen to like this individual and wouldn't mention his/her name publically.
| Quote: |
I'm emailing you to tell you that your comments regarding phpBB and their security are ridiculously childish. You are insinuating that releasing security patches is a bad policy. These bugs are only now being discovered (they existed while you were there) and it's only now people on Bugtraq are informing the group of them. They have released these patches to protect forum users. You rather them cover it up? You of all people should be appreciative of their efforts.
I know you have a grudge, but this was a really pathetic statement on your part. God will judge you.
|
To which I'll gladly publically respond:
| Quote: |
XYZ, When the developer(s) for a major application discover they have a security leak in their code, should they: (a) go find it, fix it and release a new version, or (b) Go find it, fix it, find any other instances of it, fix them, than release a new version?
The case I presented about my forums being offline is what this is about. How many times since the release of phpBB 2.0.0 have those of us using phpBB had to "fix" our software because of isset() not being used? (I'm not saying that was the cause of 208a) It would seem to me that developers would care about their software, and their users, enough to thoroughly check their software when "security issue" arises.
I understand phpBB is a OS application. I understand it's development team is highly restricted. I understand it's my own responsibilities to keep my forums up to date. I understand other software have similar security issues arise from time-to-time. I understand I have a company to run. When security haunts the software I use, that my clients use, questions start getting asked and I'm the one that has to answer them. Some of us are forced to throw away money (money does equal time) in not only addressing clients concerns, questions, and the upgrade time, but our own time spent trying to maintain my own instances of the given software, when issues like this continue time-after-time.
It appears to me that more concern is given for the "future" than the "present", where most of us live, in respect to phpBB. I don't care about how many hours are being put into some future version. I, and most others I suspect who work 9-to-5, care to know that what I am using right now, at this very moment, is secure and working properly.
If you feel this is a "childish" and "pathetic" statement for which G*D will judge me, than I am fairly sure I'm in good hands.
sub-note: and you would be incorrect about me having a "grudge". I'm actually very happy to no longer be with phpBB, as have others who have left since I did, have expressed to me. That said, I do consider my time spent at phpBB an eventful one. I made a lot of great friends. I left phpBB without any chip on my shoulder or any grudges, regardless of your perception.
|
As for an update of getting my forums backonline, they may be back online soon enough.
Lastly, to the individual who sent me the email: I fully respect you and have thought of you as a good friend since we first meet. What I say above is not anything against you. Rather a message directed toward all individuals responsible for the security of the software we use on a day-to-date basis. (not just phpBB) Additionally it's a confirmation to those who've sent me emails in direct contradiction to your own, that 100% agree with me.
|
_________________
|
|
| Back to top |
|
|
GPHemsley
Moderator
Joined: 18 Jul 2003
Posts: 430
Location: Long Beach, NY
|
| Posted: Wed Apr 07, 2004 6:20 am Post subject: |
|
|
As true as that is, the version that they have out is no doubt better than what you have installed... it just may not be as good as it could be. 
_________________
Gordon P. Hemsley
A Link to the Past • CMSformE
|
|
| Back to top |
|
|
James
3run
Joined: 19 May 2003
Posts: 3756
|
| Posted: Wed Apr 07, 2004 6:22 am Post subject: |
|
|
So I install this latest version and get all the hacks installed.... then they release another version and I have to do it all over again .
Is the only thing that is updated in the later releases security fixes?
_________________
|
|
| Back to top |
|
|
GPHemsley
Moderator
Joined: 18 Jul 2003
Posts: 430
Location: Long Beach, NY
|
| Posted: Wed Apr 07, 2004 6:27 am Post subject: |
|
|
Lately they've been making MODs to upgrade, so it shouldn't be a problem after that.
_________________
Gordon P. Hemsley
A Link to the Past • CMSformE
|
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
Powered by phpBB © 2001, 2005 phpBB Group
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
