|
Forgive me for my input. Thought people would appreciate.
I am dealing with multiple things atm thought u-232 people should know that but whatever right. Sorry! |
The wrapper name is completely irrelevant as its only a php wrapper, I could name it $CUNT - $FUCKER - $$I_CONTAIN_UNSANITIZED _CODE - Makes not a jot of difference however the code I deploy within my wrapper does, firefly already mentioned, If i don't sanitize output from db to screen or if i don't protect sql querys then I'm in trouble. This shit is child's play, been advising people of its importance and how to do it for years on TBdev =]
Below is great, I could inject for fun and pawn any db using it PHP Code:
PHP Code:
So sanitize any output before printing to screen PHP Code:
PHP Code:
|
Hint bro variables should never be used for echo print unless defined but that still is risky. If i am wrong i'll bow down and look back through my libary of life and tell you i was wrong. 98.7% I am correct though. I know you take security serious i just was passing over some info i learnt when i 15years old security and an idea.
I used this when i was 13yrs old but only wanted it to host so i could give out free html / css scripts. http://phorum.org learnt something unique about it once i found again on my birthday it is hackproof and bulletproof been round since 98 i believe the year after md5 was hacked. If anyone truely cared about security would sha5() with double_check() not sha1, sha2, sha3, sha4 lol |
error misconfiguration
Hello i have an error to project u232 v4
I have install https://github.com/Bigjoos/U-232-V4 on debian 7 wheezy and therefore I can not have the installer the error is internal server error The server encountered an internal error or misconfiguration and was unable to complete your request. excuse me for my English but I'm French. Why ? |
your server is not properly configured.
make sure you have module expires and module rewrite activated in apache2/nginx |
Or I can know if these files are enabled or not ?
virtualhost ? |
dont install trackers on shared hosting. best chances are wont work and you dont have administrator access to install what is required. :coffee:
|
im an administrator and login to root and i have install command etc....
and i have install first version of U232 no soucis but i'm search how to install V4 ? |
then use phpinfo in a file to see the information on your modules
or user a2enmod rewrite and a2enmod expires then restart apache and voila |
thank you very much Dnd it's ok for rewrite and expire and i have access to installer thanks
|
U-232 Support forum
We are currently experiencing issues with our support forum.
For limited support you can catch me and some of the Dev team on https://u-232.servebeer.com. Alternatively you can post here and I'll do my best to answer as quick as possible. Sorry for any inconvenience caused, we will have the support forum back online as soon as we can. |
how do I add user class color in torrenttable_functions.php?
i tried
Code:
".(isset($row["username"]) ? (($row["anonymous"] == "yes" && $CURUSER['class'] < UC_STAFF && $row['owner'] != $CURUSER['id']) ? "".$lang['torrenttable_anon']."" : "Code:
".htmlsafechars($row["username"])." |
Which version of U-232 ? There is differences between them.
You either need a left join to users table on browse.php so that you can grab class, or you add class to torrents table and you insert the uploaders user class on takeupload.php, then simply display it by grabbing class from browse.php and using format_username, without doing so will result in an undefined index and color wont show. Also U-232 has functions like format_username so you need to be specific which version. |
v3
Quote:
|
make sure to add index to join queries.. they will fuck your server!:coffee:
|
Quote:
|
Quote:
Will never be shared by you ( as usual ). |
just take the code part from requests
put it into torrenttable functions adjust query callings and shit. and you are good to go.. if you notice, on the requests page..users that make request have class color, donor pic, warning pic and so on.. its not rocket science people... |
U-232 Support forum & U-232 v5 Release
Support forum update - Lost the DB
Temporary url https://u-232.servebeer.com/smf/index.php Be patient while we restore data and bring it back online. U-232 V5 U-232 v5 is currently being tested for pre-release, github will be updated once we are happy, stay tuned !!!! |
Quote:
amazing can't wait for this release thanks a lot guys for all the work u do :cool: |
Not sure but V5 has alot of cool things and it will run with PHP7 ++:gum:
|
Support forum
We now have our support forum back online and fully restored, a massive thanks for autotron's efforts, sorry for the delay !!!!
https://forum-u-232.servebeer.com/index.php https://u-232.servebeer.com/ U-232 V5 is on its way very soon, will update you all here when ready !!!! Bump: Here's our IRC channel information, please note you need to be a member of the test site to join IRC otherwise the bot will kick you. The test server has web IRC access using chat.php, otherwise use MIRC or weapon of your choice. This channel has been live for a couple of years but with V5 release nearly ready then I thought this may be very useful. V5 is now PHP7 ready and is backward compatible with PHP5, it has been beta tested for a few months now and is running well. It has the default forum added back and that is also backward compatible with V4 meaning it will run of the V4 forum sql for those that run V4. There is many changes and way to much to list. I will post github repo links as soon as I release it to public irc.mibbit.com #09source |
install error
I upload U-232_V1 and U-232_V4 on my server One.com but when I have konfugerat everything almost finished and the database will instaleras then this comes up
Notice: Undefined variable: o in /customers/2/c/4/mysite.se/httpd.www/install/functions/database.php on line 26 Warning: exec() has been disabled for security reasons in /customers/2/c/4/mysite.se/httpd.www/install/functions/database.php on line 26 Notice: Undefined variable: o in /customers/2/c/4/mysite.se/httpd.www/install/functions/database.php on line 28 Memcache Extension not loaded. but U-232 works perfectly to install on One.com sorry for my English and I can not encode I am new to this |
Quote:
Secondly, U-232_V4 will not run within a shared hosting enviroment. |
Quote:
The site as well; Quote:
|
No idea what "browsers" your using but I can assure you that support forum registration is fine, in fact someone just signed up like 20 minutes ago.
So you have created an account on the test site and tried to create the same account again, mysql error log does not tell lies and it could only throw that if you tried to sign up with the same username twice : Error: Duplicate entry 'shorto' for key 'username' No very smart trying to sign up with the sign username already in the database. And someone just signed up on my test site at 16:00 and had no issues. I have no idea why only you seem to have these problems. I would suggest checking your own side out before making any assumptions, we all know how that goes =] |
the "browsers" are Chrome and Firefox:
https://youtu.be/edhyj1Ys2bc Code:
MySQLI Error |
cant you obviously see the captcha isnt showing? aka the verification letters?
was that so hard to spot that ya need to made a video?:wallbash: the recaptcha shows for me at the registration page so the issue is at your end, not on the forum end. recaptcha isnt visible for you for so many reasons... 1. something is blocking it [most likely] 2. not have something installed 3. recaptcha banned your ip that was used at that time 4. ... 5. ... Quote:
i swear..its so hard these days to find information.. its like we live in 1801 and dont have internet library and shit |
The hell is wrong with these forums. If you would look two posts up you would see that I wrote
Code:
Forums register verification does not work in any browser ;/The video was made to show Bigjoos that the "browsers" he implied are just regular browsers. I cannot view the reCAPTCHA even with opera or any other computer nor any different IP nor via a VPN located in Switzerland and Germany. Instead of just simply trying to solve the problems together on these forums you assume everybody is an idiot. Great. Thanks for the help. I'd better be moving on to another source is support is like this. |
well you are since you have addons that conflict with google's recaptcha or dont have proper things installed on your machine:coffee:
GOOGLE IT.. pretty ironical since recaptcha is from google dont ya think the issue is on your side if for others works and for you doesnt ? |
Reading everything is hard for you right?
Oh and btw rechapta forums state that due to a self signed server certificate that the rechapta is not showing like it should. |
Uhm so sign up using http, man that's not very difficult to determine.
https://dl.dropboxusercontent.com/u/...%3A40%3A20.png And I aint never paying for a cert which I can create myself. This project is open source and Its my free time and others cash that keeps it online for people like you to use. If you knew anything about signed certs then you'd know a self cert is arguably more secure, case closed. |
Bigjoos I never meant to imply that you need to buy one. My servers are also self signed - all 9 of them and I have no intention of ever buying it. But honestly I host many sites and never had this issue, so it didn't occur to me that this could be the problem.
I signed up already as soon as I read it I just replied to mr. DND ;). |
Cool, never occurred to me that you were trying to register using https, when you first posted your problem I had several sign ups that day so it didn't add up, I checked but wasn't using https and seen the recaptcha.
Then today it dawned on me when I read your post about self certs. I'll check and see if there is a fix or if i have something not set up right, support forum used to be on my own testserver but now autotron has it on a server so might be something daft, now I know whats up I can maybe do something. I also looked in my test server db and you have an account that's confirmed already, maybe you forgot and tried to sign up again and that's why you got the Mysqli error trying to create an account, if you cant remember your password you should be able to recover it, if not let me know and I'll reset it =] |
Honestly I didn't pay much attention to what I was using - https or not, so it never crossed my mind that that could be the problem ;).
But figured it out. Both the login problem to your site and the problem I needed solved that I actually wanted to visit your forums. Can I ask any news about php7 support? I'm currently looking into running both php5 and php7 simultaneously on my server but still I thought I'd ask :) |
Yes U-232 V5 requires PHP7, It will run on PHP5 but not as efficiently as PHP7. Its also forces PHP7 usage.
U-232 V5 has been released for public consumption and is available on github. |
Nice, just found it and I'm about to install it and test it out!
Thank you! https://github.com/Bigjoos/U-232-v5 is anybody needs it. BTW; Any hints as to why the secred Id in the conformation mail is left blank? Quote:
|
Email confirm I'm not sure about until i remove my working copy and install from github, none of the beta testers mentioned any signup issue, just change email confirm on config.php to false until i run a test myself.
|
tnx for the tip!
|
make sure your server s setup right to send email.. debain dose it for you but centos you will need to install extras..
|
| All times are GMT +2. The time now is 09:22. |
Powered by vBulletin® Version 3.8.11 Beta 3
Copyright ©2000 - 2024, vBulletin Solutions Inc.