hope that there will be no such troublesome methods in this version
Take a look at forum_number_format () function. Does it make the modification easier?
You are not logged in. Please login or register.
PunBB Forums → Posts by Anatoly
hope that there will be no such troublesome methods in this version
Take a look at forum_number_format () function. Does it make the modification easier?
New PunBB SVN repository opened: http://punbb.informer.com/unofficial/
Just send me a private message or e-mail if you want to get write access to the repository and the password will be send back to you.
PS: Trac for this repository will be also installed soon.
Confirmed. It is pun_quote bug.
Are we there yet?
There are plans
I don't really know how the cache works or how to add stuff to the cache.
Just read the code of include/cache.php.
Find the topic's row and all it's posts' rows in the backup and insert them into topics and posts tables.
Link to 1.2 mod?
Added to PunBB 2.0.
This also may be an extension for 1.3.
Fixed?
Did this appear for admin/authorized or all users?
Could end up doing too many DB queries
Cache the lists of user_id's for admin/mods/other colored groups.
Some profile links that are not usernames (like Profile link on navbar) get colored
Usernames that do not have links generated by forum_link() function do not get colored
I think the most correct way is not fn_forum_link_end, but to alter the "username" before displaying in many hooks. Though I don't know whether it is really possible :-)
Timeline shows that extension is fixed, however, extensions panel does not show any update to pun_quote.
There's delay before extension is published in PunBB repository (where the forum gets new versions from). Each new version is being reviewed (differences to the previous version at least) before publication.
Could you please disable extensions one by one and find which one causes the bug.
I know, it's rare that they are off
Not at all. I haven't seen hosts with register_globals enabled for a long time.
But I'd prefer be safe with PunBB 1.2.20
PunBB 1.2.20 is safe.
"Private Messaging System 1.2.x" is an unofficial third-party modification. Contact to its' developers please.
I would even be happy with the other default styles, but I would like something that has been modified.
Why not modify it yourself? ;-)
When will we get more default styles?
Soon :-)
Dear forum.developers.facebook.com administrators. We're very flattered by the fact you've chosen PunBB 1.2.
But now when a user tries to register at the forum.developers.facebook.com, he gets an error:
Could not open socket
I've just reproduced it myself.
This issue was reported to us via PunBB Bug Report form, because there is no link to report bugs on your site (I've searched through many Facebook pages and hasn't found one).
Here is the first report:
I can't register to the facebook developers forum. When I complete the registration page here: http://forum.developers.facebook.com/re … gree=Agree
I get to a page where the only content is: Could not open socket
Today I've received another "bug report" from Facebook user:
...
Ive waisted many hours on ur site and would appreciate the reactivation of my account for being a condusive member of facebook// thank you.
Looks like he couldn't find where to write a letter and found nothing else, but the PunBB Bug Report form.
Please, fix your forum installation and add some clear way for users to report bugs to you.
Writing here, because I have no idea where I need to write.
You'll have to configure redirect to rewrite.php manually in the Nginx (we also use it in our high-load projects) server configuration file. It would be nice if you document your experience in wiki. Also you may get some issues related to $_SERVER and $_GET/$_POST arrays. Report them please, we'll try to help you. Good luck :-)
Can you explain more? Do you mean httpd log?
Yes. Could you investigate it or just zip it (better just a part of log for the period when you think you were hacked) and mail me.
Try to visit Administration => Extensions => Manage hotfixes (/admin/extensions.php?section=hotfixes).
If there are hotfixes not installed yet, then we should think of making the message more informative :-)
You need to do some modifications to integrate forum into your site. See similar topic.
Did you install the hotfixes?
What other PHP-scripts do you have installed at the same host (DB access may be gained through other script)?
Is it DS/VDS or simple virtual hosting?
Are you sure no-one could get password in non-technical way? :-)
Do you have Apache access-log available for the period when user has changed his group?
I just change the folder name where punbb installed
This will not possibly save you in case of the real exploit.
Nevertheless, after you find the hole, you'd better reset (fill randomly) all users passwords (starting from yours). If you will not succeed in finding the whole, you may hope that it was a single incident, but it is still better to reset at least admin passwords, when you come to such a conclusion.
PunBB Forums → Posts by Anatoly
Powered by PunBB, supported by Informer Technologies, Inc.