Notings of Attention™
Acmlmboard 2 Released
Github/GIT | @acmlmboard | IRC: #abdev
Chatting Places
IRC: #kafuka | Discord | Mastodon
Affiliates
Super Mario Bros. X | Kuribo64
Views: 6,986,948
 Main | FAQ | IRC chat | Memberlist | Active users | Latest posts | Stats | Ranks | Online users | Search
03-02-21 08:10 PM
Guest: Register | Login

0 users currently in AcmlmBoard Developer Zone | 1 bot

Main - AcmlmBoard Developer Zone - [WIP] Experimental Acmlmboard 0.7 fork (1)
Next newer thread | Next older thread


NinCollin
Posted on 07-25-18 01:23 AM (rev. 13 of 09-23-18 03:09 PM by NinCollin) Link | ID: 138407
Normal User

Red Koopa

Level: 21


Posts: 46/125
EXP: 49878
Next: 65

Since: 09-06-17
From: World X Pipe

Last post: 387 days
Last view: 263 days
The past few weeks I've been working on a highly experimental fork of Acmlmboard 0.7.

My main goal is to clean up and optimize the code as well as documenting everything to ultimately create a lightweight base for others to fork and customize.

As of right now though the code is a mess, and the converted pages are still quite buggy.

Version specific info in in the README file for each release.

----------------------------------------
Disclaimer
----------------------------------------
This is test software blah blah blah, don't expect it to work.

----------------------------------------
Releases
----------------------------------------
Prerelease 09-23-2018
Nightly 07-27-2018
Nightly 07-26-2018
Nightly 07-25-2018
Nightly 07-24-2018
Nightly 07-23-2018

----------------------------------------
Roadmap
----------------------------------------
*Revise code for neatness, security, and functionality.
*Implement permissions (and related things)
*Figure out a simple search feature
*Add birthday input field
*Add events and revise backported calendar
*Create a few functions for various things
*Improve scheme support
*Add pages in certain places
*Add Private Messages support
*Add minipics
*Add shoutcast support
*Add pronouns, revise namecolor system
*Remove various testing garbage
*Add buttons to jump to the last post in a thread
*optimize queries
*Make most input boxes "HTML Proof." We don't want threads that are titled with autoplaying HTML5 video
----------------------------------------
Additional Notes
----------------------------------------
All pages now functional!

Specific features:
*Powerlevels have been removed, but the permission-based system hasn't been implemented yet. Instead, the field "debug" in table "users" temporarily controls staff functions.
*Restrictions on forums (i.e. staff forums, read-only forums) haven't been implemented yet. Involves permissions.
*Banned users haven't been implemented yet. Involves permissions.

Known Bugs:
*Number of threads in profile is calculated wrong
*Timezone offset not working
*I encountered a weird bug when editing posts in which every line break was replaced with 2 line breaks. Hasn't occured again.
*Probably many more little things

I do web design! Check out the stuff I've done here (some of it is unfinished though.)

Jamie
Posted on 07-25-18 10:49 AM Link | ID: 138430
Banned
Excessive drama.
Level: 69


Posts: 1136/1480
EXP: 2826298
Next: 43445

Since: 06-03-14

Last post: 698 days
Last view: 24 days 		I'd be interested in testing this, or at least giving you some kind of testing ground. My server runs MariaDB 10 (based on MySQL 5.8 iirc) and PHP 7.0 on Apache 2.4.25 if you want to use it for anything. I've just got to figure how to make permissions works on PHP with homedirs while allowing write access by the user :P

____________________
Good riddance!

NightYoshi370
Posted on 07-25-18 05:37 PM Link | ID: 138463
Normal User


Level: 32


Posts: 311/315
EXP: 190156
Next: 16286

Since: 12-31-17

Last post: 774 days
Last view: 616 days 		You might want to downgrade to PHP 4...

____________________
Mario Making Mods

NinCollin
Posted on 07-25-18 10:29 PM (rev. 3 of 07-25-18 10:37 PM by NinCollin) Link | ID: 138509
Normal User

Red Koopa

Level: 21


Posts: 47/125
EXP: 49878
Next: 65

Since: 09-06-17
From: World X Pipe

Last post: 387 days
Last view: 263 days
Posted by Jamie
I'd be interested in testing this, or at least giving you some kind of testing ground. My server runs MariaDB 10 (based on MySQL 5.8 iirc) and PHP 7.0 on Apache 2.4.25 if you want to use it for anything. I've just got to figure how to make permissions works on PHP with homedirs while allowing write access by the user :P

If you want to, go right ahead! I haven't been able to test this at all on PHP 7 (I've been using 5.6) but theoretically it should work. Let me know if it does (or does not) and feel free to report any bugs here ;)

----------------------------------------------------------------
Nightly 07-25-2018 has been released.

--------------------------------
Version Changes
--------------------------------
*Misc things fixed to point to new working pages
*Until permissions are finished, a field titled "debug" controls staff functions
+Edit Thread is now working.
+Edit User is now working.


I do web design! Check out the stuff I've done here (some of it is unfinished though.)

Jamie
Posted on 07-26-18 06:54 AM Link | ID: 138567
Banned
Excessive drama.
Level: 69


Posts: 1149/1480
EXP: 2826298
Next: 43445

Since: 06-03-14

Last post: 698 days
Last view: 24 days 		mysql_error() is being used in profile.php

also, remove the password from the debug stats, that's kinda creepy. MD5 is also not secure at all, look into using password_hash function from Php 5.5 onwards

____________________
Good riddance!

Epele
Posted on 07-26-18 10:25 AM Link | ID: 138573
Site Administrator
The Sorceress.
Boing~

Level: 225


Posts: 18625/20766
EXP: 173147875
Next: 384110

Since: 01-01-12
From: UK

Last post: 19 days
Last view: 9 hours
MD5 isn't totally insecure. Just ensure you salt it with some garbage and it can't be brute-forced as the attacker would need the salt to brute force it.


The world could always use more heroes!

Jamie
Posted on 07-26-18 10:44 AM Link | ID: 138575
Banned
Excessive drama.
Level: 69


Posts: 1153/1480
EXP: 2826298
Next: 43445

Since: 06-03-14

Last post: 698 days
Last view: 24 days 		given it gave me my plaintext password on a certain debug page, I doubt it's salted for some reason

____________________
Good riddance!

Epele
Posted on 07-26-18 11:06 AM Link | ID: 138578
Site Administrator
The Sorceress.
Boing~

Level: 225


Posts: 18626/20766
EXP: 173147875
Next: 384110

Since: 01-01-12
From: UK

Last post: 19 days
Last view: 9 hours
Posted by Jamie
given it gave me my plaintext password on a certain debug page, I doubt it's salted for some reason
There is no security as of yet provided on the password field as per the initial post:
Posted by Nin★Collin
*Password cookies are currently unencrypted for testing purposes. The cookie/login system will be rewritten at some point, or at least encrypted.


This would suggest some systems are still due to be updated.


The world could always use more heroes!

Thieppy
Posted on 07-26-18 11:13 AM Link | ID: 138579
Normal User

Level: 102


Posts: 2887/3450
EXP: 10921765
Next: 168202

Since: 03-19-13

Last post: 205 days
Last view: 24 days
you should put a warning on the register page in the meantime. people are known to reuse passwords easily, it's actually pretty irresponsible not to consider that.

Jamie
Posted on 07-26-18 11:43 AM Link | ID: 138580
Banned
Excessive drama.
Level: 69


Posts: 1155/1480
EXP: 2826298
Next: 43445

Since: 06-03-14

Last post: 698 days
Last view: 24 days 		yeah. I use the same pass pretty much everywhere or the same style

____________________
Good riddance!

Yushe
Posted on 07-26-18 04:08 PM Link | ID: 138628
Normal User

internet = mistake

Level: 32


Posts: 237/247
EXP: 196882
Next: 9560

Since: 02-15-14

Last post: 436 days
Last view: 193 days
Posted by Thieppy
you should put a warning on the register page in the meantime. people are known to reuse passwords easily, it's actually pretty irresponsible not to consider that.
This. Kinda dumb just to put the warning message on the login page.

____________________

Yushe#1289

Twitter - YouTube - E-mail

NinCollin
Posted on 07-26-18 08:22 PM (rev. 3 of 07-27-18 05:49 AM by NinCollin) Link | ID: 138709
Normal User

Red Koopa

Level: 21


Posts: 49/125
EXP: 49878
Next: 65

Since: 09-06-17
From: World X Pipe

Last post: 387 days
Last view: 263 days
Posted by Yushe
Posted by Thieppy
you should put a warning on the register page in the meantime. people are known to reuse passwords easily, it's actually pretty irresponsible not to consider that.
This. Kinda dumb just to put the warning message on the login page.

Inputing a password in register.php doesn't directly pose any security risks, as it doesn't automatically log you in and it stores your password in the database using MD5. But yeah, I get what you're saying, and the new authentication system will either be salted or use the native password_ functions.

I've added the warning marquees everywhere, as well as added a disclaimer at the top of every page.



Edit: (I can't double post)

I wiped the user accounts on my test board, because the new login system is incompatible with it :P

----------------------------------------------------------------
Nightly 07-26-2018 has been released.

--------------------------------
Version Changes
--------------------------------
*Software now released under the Affero GPL license.
+A new encrypted login system has been implemented. I'm still deciding on how well I like it, so it's subject to change.
+Began documenting and formating a few pages
+Fixed a profile.php bug thanks to Jamie


I do web design! Check out the stuff I've done here (some of it is unfinished though.)

NinCollin
Posted on 09-23-18 03:03 PM Link | ID: 140741
Normal User

Red Koopa

Level: 21


Posts: 84/125
EXP: 49878
Next: 65

Since: 09-06-17
From: World X Pipe

Last post: 387 days
Last view: 263 days
Been a while since I put a release here
Prerelease 09-23-2018 has been released.
--------------------------------
Version Changes
--------------------------------
So many things, but all pages are at least mostly functional now.

I do web design! Check out the stuff I've done here (some of it is unfinished though.)

Elemi
Posted on 09-23-18 11:21 PM Link | ID: 140796
Normal User

Jejfjsiejrjntnyns8fujrtnjs8f7eibrbtudiwie
Level: 35


Posts: 241/284
EXP: 276794
Next: 3142

Since: 01-05-12

Last post: 475 days
Last view: 114 days 		Keeping the legacy alive!

Very happy to see finally a version that brings all the basics and should offer people a simple clean base to work from!

I'm tired of trying to shave Acmlmboards and breaking everything the getting bamboozled.

I'm gonna keep an eye on this, your work is appreciated!

Next newer thread | Next older thread
Main - AcmlmBoard Developer Zone - [WIP] Experimental Acmlmboard 0.7 fork (1)


Acmlmboard v2.5.5 (10/04/2020)
© 2005-2021 Acmlm, Emuz, et al.

Page rendered in 0.091 seconds. (854KB of memory used)
MySQL - queries: 159, rows: 537/571, time: 0.059 seconds.