You are not logged in. Please login or register.
PunBB Forums → Posts by Tobi
I think you have don't understand my request
I think you haven't understood my response 
:
Let's say the user has a pic of himself he took with a digicam. These are usually around 2 Megs nowadays.
You don't want massive files like this so you limit the max upload size to 500 k in the admin like you suggested.
So what do people have to do now?
Use a software to downscale that pic before uploading. 
So no work saved from them.
Don't think so.
You will always have to define a maximum size to prevent huge files from being uploaded and you having to pay for it.
So what's the difference between a limit of 500k and 60x60 pixels?
Installing it and making it the way I wanted was kind of frustrating
Yes I know, unfortunately it is not the easiest of all mods, lots of files involved..... glad you got it running.
OK,
then just make an empty file in the pun installtion directory.
Write there
<?
$auth = file("./admin_pass.pwd");
list($user, $password) = split(":", trim($auth[0]));
echo "User is $user and password is $password";
?>make sure the path to admin_pass.pwd is correct
and see if it displays anything.
So if you don't expect data coming in via GET you can drop that completely, or not?
Can they cover your hosting costs?
That's a good question to ask, rather than "can they feed my family" ?
The answer is: Provided that you have a good and stable amount of visitors and your host doesn't rip you off- yes, they can.
But don't expect much more than that. There are rumours out there but I wouldn't trust them.
We get around 60 Euros a month for 300 unique visits a day. Of course this depends on the value of the ads and on the topic of your sites. Some of ours are tourism related where ads tend to be expensive (and pay well on the other hand).
So don't take this number as a rule.
And then, if you post something like "I bought a selection of drops at union station" you will die three times
And another time if you want to explain that "2-1=1" ...
[:( When I do this, the page loads without even requesting a username/password.
Of course it does.
This is only meant to find out if the path is correct. The page should load and it should print somewhere the username and Password.
Unfortunately it's still not working for me.
OK, to see if your path is correct you can just leave out the authentication part and only call the file:
if (!isset($_SERVER['PHP_AUTH_USER'])) {
// authenticate();
}
else {
$auth = file("./admin_pass.pwd");
list($user, $password) = split(":", trim($auth[0]));
echo "$user $password";
/*
if($_SERVER['PHP_AUTH_USER'] != $user || md5($_SERVER['PHP_AUTH_PW']) != $password) {
authenticate();
}
*/
}This will show you if the file is found and parsed correctly.
If yes then it must have to do with your server settings.
So if you have the file in the forum root you can try
$auth = file(PUN_ROOT ."admin_pass.pwd");if it is in the include directory it will be
$auth = file(PUN_ROOT ."include/admin_pass.pwd");If this all does not work I dunno... maybe some really strange configuration on your machine.... phew....
That's crap. Total crap.
What they say is
We will review your website in a week and if your website meets our minimum requirement of 100 unique visitors per day then we will give you your domain for FREE.
Great.
So you get the name, you advertise you site everywhere, hoping it will get the 100 unique visitors a day, you print the address on your cards, give them to friends, use it for your email, and then
- you don't make the 100
- you make the 100 but after 6 months you miss them
And then? How much will you have to pay to keep the name?
Because by then you spent so much time on it that you will have to keep it.
And what kind of webhosting do they add to it, if any?
There's nothing like a free lunch, and a domain name - just the name, no hosting - you get for next to nothing nowadays anyway.
And if you buy the name then it will be yours forever and not subject to undocumented and/or dubious business plans.
My tip: Forget about it.
Oh yes.
Found it after a while... they don't seem to want everybody finding it :-)
Since it runs on Win***** only it's not interesting for me anyway.
What would be interesting is an extension to punBB that allows using the Db for Newsletters.
Would that be an idea?
Users just go to their profile to subscribe/unsuscribe... or does it exist already?
Sure you can
I just thought you maybe don't want to.
I spent quite a while optimizing it here and there and I know it's some work.
The one mentioned by eslayter costs money it seems.
Don't know if that's worthwhile for what you plan to you - but then again that's none of my business
If you want I will give you the mailer I wrote that we've been using in several projects.
It's serving 250.000+ addresses currently so I guess it will do for you.
Nothing required except for the mail() function, I use it with mysql tables but I think it will work without.
Oh, and this script also takes over the registering/unregistering of users of course.
Why not just use the date(); function in the footer? I guess both are good but date(); is much simpler
For the time your could use time();
No, of course you use date() for both.
<? echo date("Y-m-d h:i:s A") ?>will output exactly the same as the JavaScript does.
In one single line.
I think if there is no need to use JavaScript (e.g. figure out things on the client side that the server can not know) then it is always better to use server side scripting. Faster and more reliable.
If my forums are installed in http://mydomain.com/directory/forum/ where would I put the password file?
Insecure version: in the same directory.
Then call it like
$auth = file("./admin_pass.pwd");Better:
Put it outside of the webserver's document root.
Say, your server root is "/home/for/my/web/directory" and in there you have a dir called "forum".
Then your forum dir above reads "/home/for/my/web/directory/forum/".
Now you put the password file into "/home/for/my/web/"
and call it like
$auth = file("../../admin_pass.pwd");Ayway, always make sure teh file is readable by the webserver!
can you chown it to the php user?
Most *NIX Systems do not allow a user to chown something to another user, let alone the webserver user. Security issue.
Don't think that will work
Also I don't know any php so if you could provide me with a mkdir script I would be very greatfull.
<?
mkdir("/path/to/your/cache",0777);
?>Save it as let's say "mkdir.php" in your installation directory and call it from a browser.
You'll have to remove the old cache dir first of course
No shell access? Can't change directory permissions?
Then change host.
Sorry. That's really all I could say.
This problem you will have with any board, not just punBB. They all require some dirs to be world readable.
That is strange.
777 means rwxrwxrwx for files and
rwXrwXrwX for directories.
While "x" normally means execute rights the capital X just means the right to open this directory.
And of course php cannot write to a directory that it can't open.
Then again, a directory with the permission
666 translates to
rw-rw-rw- which means nobody can open it (well, Mr. root can of course...)
As it makes sense for your host to restrict the usage of the execute bit on files I think forbidding the execute bit on directories makes his service absolutely unusable
So either you got something wrong there or your host is amongst the strangest of all strange hosts I know so far.
Could be one of these:
Are you sure the password file is in the correct path and readable by the webserver?
Are you sure the password is md5-encoded properly?
Are you sure you have the right password (case-sensitive, mind you)
If in doubt, try the line I pasted above.
The unencoded Password there is "Test".
So just paste this line (nothing else, just ths line) into your password file and try.
Wouldn't it be an option to make a Textile mod?
So that people can chose wether they want to offer bbcode or textile?
This is going to become someting like Windows vs. linux otherwise.
But dev would say "yes but it's not compatible with Mosaic".
That's the life
Well, aside from the fact that of course a board has to look nice on Lynx as well
I used to switch off the DHTML wysiwyg editor in my last board after a while.
Too many people found it extremely funky to spoil their messages with huge, green, red, blue, bold, italic and possibly blinking text.
If you give people tools you must trust them that they know how to handle these tools, that's what I think.
And from my experience 50% of all users don't use them and the other half overdo it.
And having only minimal layout possibilities keeps the board readable
OK OK, as I said, Ididn't intend to bug anybody
Thanks.
Yes?
Must have overlooked that. Sorry.
And that surely was it?
Don't want to bug anybody, I'm just a bit nervous since my machine got hacked some month ago (because I gave space to friends and never bothered what they did there. So they went out and got phpBB ... )
Or we can all do what you do and actually make an effort to find any outstanding vulnerabilities
Seriously, I'd like to but f.e. I still don't know if the hack reported by Rod was really due to an unclean update or a vulnerability of 1.2.6 - and if the latter, whalt exactly happened
PunBB Forums → Posts by Tobi
Powered by PunBB, supported by Informer Technologies, Inc.