You are not logged in.
- Topics: Active | Unanswered
#1 Re: General support (1.4) » How to protect the file config.php » 2012-02-08 12:09:05
- Reines
Well, sure I guess it is possible if you make an error. I guess similarly if you accidentally disabled PHP on your web server it would be viewable too.
#2 Re: General support (1.4) » How to protect the file config.php » 2012-02-07 16:15:11
- Reines
It doesn't matter - the file doesn't output anything, so the fact people can access it isn't a problem.
#3 Re: Modifications (1.4) » Why did no one tell me about this earlier ?? (install_mod format) » 2012-01-16 11:21:35
- Reines
my point is not all of users/admins prefer a light forum, you may focus on minimizing everything but that wont allow all users to be satisfied
It's impossible to satisfy everyone - if you try too hard you end up with something full of compromises that satisfies no-one fully.
#4 Re: General support (1.4) » spam bots signing up all the time.. » 2012-01-13 16:15:39
- Reines
You also need to distinguish between bots and humans. Captcha's etc will help against bots, but do nothing against humans. IP blacklist checking will help against some of both, but never catches all.
#5 Re: Modifications (1.4) » Why did no one tell me about this earlier ?? (install_mod format) » 2012-01-09 11:04:13
- Reines
To be fair I'd have thought it should be obvious there would be changes between 1.2 and 1.4 just because of the version number?
#6 Re: Core development » Spontaneous developer meeting tomorrow? » 2012-01-08 00:02:35
- Reines
Should do - shout me on gtalk or email me or something if I'm not around.
#7 Announcements » FluxBB 1.4.8 released » 2012-01-05 17:16:21
- Reines
- Replies: 3
Today, we release FluxBB 1.4.8!
We hope all of you had a good start into the new year. Stay healthy and stay with us - we've got some nice things planned for you this year!
As promised, we have been working on our next major version, 2.0, for the last months. We were (mostly) diligently working, and the first alpha release is not far away.
Nontheless, while not implementing new features anymore, we are still taking care of the 1.4 branch. Thus, we now have a new release for you, which fixes 20 bugs.
As always, some small enhancements have also found their way in:
Topic links are now shown at the start of notification mails. - making it easier to jump to the topics on mobile devices.
Added a new constant FORUM_DISABLE_STRIPSLASHES that fixes integrations with other software which also takes care of stripping slashes from user input automatically, thus stripping them twice (because FluxBB does it, too).
Fixed bugs include:
Posts with a large amount of newlines in a row could break the forum on some server configurations.
Search could be tricked into examining every single post, essentially crashing large forums.
File uploads on Windows servers were broken if magic_quotes_gpc was enabled.
URLs ending on slashes were automatically hyperlinked, but only up to that slash, not including it.
Some minor JavaScript fixes for Internet Explorer and forms.
PHP's is_writable() mis-interprets file permissions on Windows NTFS Server
Some special UTF-8 characters could cause a post to be truncated at that character (MySQL-only).
You can view the full list of changes here.
As usual, downloads can be found on the download page.
Changed files and patches can be obtained on the upgrade page.
Updating to FluxBB 1.4.8 will still work if you use any prior version of FluxBB and even from PunBB 1.2/1.3.
As always, please remember to do a backup of both your files and database!
Good luck with updating and enjoy stability!
If you have any problems or spot any errors, please let us know!
And with that, back to v2.0.
#8 Re: Core development » FluxBB 1.4.8 » 2012-01-05 15:56:52
- Reines
I just pushed an update - is this issue fixed now?
#9 Re: Core development » FluxBB 1.4.8 » 2012-01-04 17:43:25
- Reines
Cheers. I've updated the copyright year and bumped the version number to 1.4.8. I want to solve this ticket before we do a release though, so will try look into it soon...
#10 Core development » FluxBB 1.4.8 » 2012-01-03 14:00:58
- Reines
- Replies: 5
I've just closed the last ticket on FluxBB 1.4.8 - I'll aim to do a release tomorrow that way the final changes get at least one day of testing on fluxbb.org. Please shout if you see any issues or think of anything else that should be taken care of before the release!
#11 Re: General support (1.4) » Unable to connect to MySQL » 2012-01-03 12:29:05
- Reines
That error looks more like there is a problem with your MySQL install.
#12 Re: FluxBB discussion » How to backup database? » 2012-01-03 11:38:47
- Reines
See if you can follow this: https://fluxbb.org/docs/v1.4/practices#backing-up (though I'm afraid it's English only and not very well written!)
#13 Re: Core development » 2.0 Coding Conventions » 2011-12-21 16:32:39
- Reines
Mixing would be horrible. Personally I prefer on same line, but I can cope with either. I would suggest probably keeping them on a new line, simply to avoid changing unless we have a good reason.
#14 Re: Core development » 2.0 Coding Conventions » 2011-12-17 10:15:00
- Reines
Using some kind of loader to load the modules themselves into the core would be fine - but changing the modules to rely on a loader function to include internal files adds a dependency on that function, which is bad.
#15 Re: Core development » 2.0 Coding Conventions » 2011-12-16 10:51:00
- Reines
Do you want to use autoloader module for loading every class? For example replacing
require PHPCACHE_ROOT.'Filter.php';with
Flux_Loader::load('Flux_Cache_Filter');or something similar?
Ideally the modules should be independent - they were designed so that other projects can just drop in the database or cache layers without reliance on FluxBB. Using some kind of FluxBB loader would break that - and I don't see what it gives us, other than being more complicated?
#16 Re: Core development » SQL: Inserting multiple rows with prepared statements » 2011-12-15 10:42:02
- Reines
Ignore it and use prepared statements like Smartys suggested - they are designed to be fast for repeated operations.
#17 Re: Core development » Reporting topics » 2011-12-07 11:13:05
- Reines
I actually wrote a mod for 1.3 ages ago that did pretty much just that - if a post had been reported (by anyone) but not yet had the report zapped/deleted, it should show "already reported" instead of the report button to prevent duplicate reports. It sounds like a sensible feature for 2.0 to me at least.
#18 Re: Core development » 2.0 Coding Conventions » 2011-12-05 19:44:44
- Reines
I personally hate braces for one-line conditionals, they're just useless and make the code dirty.
They aren't useless - they are consistent, and make it much easier to modify the body of the condition without forgetting to add them and messing it up. Personally I've never had that problem, but it is one argument that is often given for using them.
#19 Re: Core development » 2.0 Coding Conventions » 2011-12-05 15:04:23
- Reines
I think method names and variable names should be changed to camelCase - or at least be consistent with each other. You suggested this for methods, but not variables. I don't like the idea of doing methods one way and variables another.
Braces around one-line conditionals I don't like, and never do them myself. Though I'm not going to argue strongly against them - I can see their advantage, I just personally don't like them.
Spaces vs tabs - tabs. Fuck spaces.
Class names - depends if we are using namespaces or not, as Frank said.
#20 Re: FluxBB discussion » How do FluxBB.org admins stop spam? » 2011-11-13 10:38:35
- Reines
Here we use a couple of defences...
Honeypot - on our register form we have renamed the email field and added a hidden field with the old name. A lot of bots fill in the old one, but real users all fill in the new one.
StopForumSpam - This is a blacklist service, which after the honeypot catches a few more spammers upon registration.
We do get the odd spammer still, but very rarely. Any that do get through get deleted and reported to StopForumSpam, instead of being banned.
I posted some stats here a while ago if you're interested.
#21 Re: Core development » 2.0 -> Master branch » 2011-10-28 10:57:25
- Reines
Sure - I've changed it to the default on GitHub.
#22 Re: Core development » \r\n vs \n » 2011-10-12 09:37:54
- Reines
Are you making use of SMTP or is it using PHP mail()? PHP's mail() function specifically states that headers must use CRLF line endings.
#23 Re: Core development » 2.0: Database layer talk » 2011-09-29 08:30:45
- Reines
Have you guys considered replacing DBLayer with one of the standard database layers included in PHP? Specifically PDO?
For FluxBB 2.0 we have already replaced DBLayer with a new database module, which does use PDO internally for driver abstraction. Simply using PDO directly would have worked for 1.4, but for 2.0 we need queries to be extensible and with a mild form of SQL dialect abstraction too, hence the database module rather than direct use of PDO.
#24 Re: Core development » 2.0: Translation system (pull request) » 2011-09-19 17:53:20
- Reines
Well the check would be so tiny that really it feels a bit silly even worrying about - but then again, if we can avoid it - why not?
Perhaps a section in the admin panel for board maintenance that could have options to regenerate the cache (for various different caches) would work nicely?
#25 Re: Core development » 2.0: Translation system (pull request) » 2011-09-19 15:14:33
- Reines
It should be easy enough to simply check the last modified time of the pack and update the cache based on that. It means we need a disk read on every load - but reading the file attributes should be better than actually opening and reading a version number from the file.