You are not logged in. Please login or register.
PunBB Forums → Posts by Rickard
When DEBUG is enabled, PunBB will display
- more detailed error messages if/when something goes wrong.
- script generation time in the footer.
- no. of queries executed in the footer.
Enable DEBUG by opening up include/common.php, finding (line 26)
//define('PUN_DEBUG', 1);
And removing the two slashes so that it looks like this:
define('PUN_DEBUG', 1);
It will probably never be a part of PunBB officially. A mod would be nice though.
You will have to run a query manually.
UPDATE users SET status=2 WHERE username='TheUser';
Gå till userns profil och klicka på "Delete user".
You seldom can in bulletin boards.
Just edit include/main.tpl
I will check it out.
I think it sounds good. I can't think of anything not good about it :)
Do you mean the current guests?
I'm not following you here. Why fiddle with .htaccess? Just set auth_type to http in config.inc.php and you're all set to go.
No, that's what I was trying to say in my previous post :)
Ja, det verkar fan inte bättre :)
Yes, I verify the user on each pageview. All scripts require access to one or more variables from the user profile, so I have to do the query anyway. Also, it's just a simple SELECT on a table with index for the user ID, so the query is very fast.
In PunBB I do the following (from 1.1):
- Fetch the serialized array from the cookie.
- SELECT * FROM users WHERE username=username_from_cookie AND password=hash_from_cookie
- If I get a row back, I know the user is logged in. Otherwise the username and/or password in the cookie is incorrect.
I can only think of one place where that class is used and that is in admin_users.php when you search for users and the user isn't validated.
<span class="punhot">Not validated</span>
But, since it is only used in one single place, I guess it might as well be removed :)
Hmm, how would the MD5 hash be distributed throughout the pages?
Hmm, so what you are saying is that if you use Opera and type czech characters, they come out wrong? And this only occurs in PunBB? Sounds very strange. The handling of "special characters" in PunBB is more or less identical to that in InvisionBoard.
It would be a nice feature, but there are other features I think have much higher priority.
Well, I don't think I've ever seen a host that doesn't provide some sort of administration interface for the databases it offers. phpMyAdmin i.e. has an export function.
Hehe, ok :)
I can't really see how using an embedded database system like SQLite should be more unsecure than i.e. running MySQL.
Yeah, that's a huge mod.
Why? Because I haven't implemented it.
I will probably look into this for the next version of PunBB. It does cause some problems with the search indexing. We'll see.
Go complain at opera.com :)
Sounds like a good layout. There is one problem though. If you don't validate the users session every page view, it will be easy to hijack someone elses session by just getting hold of their session ID. It's quite common to attach an IP address to the session ID and then for each page view you make sure that the visitors IP address matches the session ID.
ataylor wrote:
I can send you one by email if you want... :)
How big is it? Could you perhaps contact me on IRC (Quakenet). I'm in #punbb.
PunBB Forums → Posts by Rickard
Powered by PunBB, supported by Informer Technologies, Inc.