26

(75 replies, posted in Supported extensions)

v 0.3.3.3
https://github.com/MioVisman/punbb_exte … _stop_bots

This version does not use cookies.
User is asked only once, the guest is asked every time.

P.S. I don't use Chrome (it transfers too much data to Google).

27

(75 replies, posted in Supported extensions)

You said, it will ask every 2 weeks after that?

yes

so it seems to be a cookie problem with google chrome, not php version.

Open the console in Chrome (F12 if I'm not mistaken), enable output of both errors and warnings, then test sending messages.
Turn on the continuous console so that messages are not lost after a page refresh.

Which extension are you talking about ?

https://punbb.informer.com/forums/topic … nstopbots/

Further here https://punbb.informer.com/forums/post/158624/#p158624

30

(75 replies, posted in Supported extensions)

v 0.3.3.2
https://github.com/MioVisman/punbb_exte … _stop_bots

Add PHP 7.2-8.0 compatibility.
Remove potential vulnerabilities.
Add compatibility with non-Latin answers.
Remove cache regeneration by timeout.

the other problem is that it asks questions to members

The question is asked to users once every 2 weeks.

I have some errors on this extension,

What specific bugs are there in this extension?

33

(31 replies, posted in Feature requests)

https://i.ibb.co/Hd7zL21/notify.png

An article on your topic (not punbb): https://nicj.net/mysql-converting-an-in … n-to-utf8/

Although you have the page encoding iso-8859-1 set, the actual database may be ISO-8859-15, Windows-1252 https://en.wikipedia.org/wiki/ISO/IEC_8 … e_coverage

I've got an error when i try to post :

Enable debug mode in config.php:

// Enable DEBUG mode by removing // from the following line
define('FORUM_DEBUG', 1);

and look in the server error log error.log.

I think this script could be my solution, but it is not more available

The Internet archive remembers this script:

~ PunBB 1.2 -> PunBB 1.3 database preparation ~
(tested successfully during a real forum migration)

Converts latin1 (or whatever) colums to utf8 manually, and prevents loss of data due to special chars.
This does NOT convert 1.2 database to 1.3 format, it only alters the charset, you still need to run db_update.php script to convert your db.
>> After executing this script, you MUST NOT SELECT "Enable conversation", or you will lose data if sone of your entries contain special chars.

<?>    This script assumes your data is in the same format as your headers (which is the case most of the time)
    Please backup/dump your database before using my script for safety.

<!> Don't forget to change the USE statement at line 25

Read this topic for more information:
http://punbb.informer.com/forums/post/140765/#p140765


    tOnI0 (punBB official forum)
    contact: tonio.cotten@gnail.com
    03/08/2011

*/

USE myDbName --your punBB 1.2 Database name

--bans

ALTER TABLE bans

DEFAULT CHARSET=utf8,

MODIFY COLUMN `username` varchar(200) CHARACTER SET utf8,
MODIFY COLUMN `ip` varchar(255) CHARACTER SET utf8,
MODIFY COLUMN `email` varchar(50) CHARACTER SET utf8,
MODIFY COLUMN `message` varchar(255) CHARACTER SET utf8;

--categories

ALTER TABLE categories

DEFAULT CHARSET=utf8,

MODIFY COLUMN `cat_name` varchar(80) CHARACTER SET utf8 not null DEFAULT 'New Category';

--censoring

ALTER TABLE censoring

DEFAULT CHARSET=utf8,

MODIFY COLUMN `search_for` varchar(60) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `replace_with` varchar(60) CHARACTER SET utf8 not null DEFAULT '';

--config

ALTER TABLE config

DEFAULT CHARSET=utf8,

MODIFY COLUMN `conf_name` varchar(255) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `conf_value` text CHARACTER SET utf8;

--forums

ALTER TABLE forums

DEFAULT CHARSET=utf8,

MODIFY COLUMN `forum_name` varchar(80) CHARACTER SET utf8 not null DEFAULT 'New Forum',
MODIFY COLUMN `forum_desc` text CHARACTER SET utf8,
MODIFY COLUMN `redirect_url` varchar(100) CHARACTER SET utf8,
MODIFY COLUMN `moderators` text CHARACTER SET utf8,
MODIFY COLUMN `last_poster` varchar(200) CHARACTER SET utf8;

--perms

ALTER TABLE forum_perms

DEFAULT CHARSET=utf8;

--groups

ALTER TABLE groups

DEFAULT CHARSET=utf8,

MODIFY COLUMN `g_title` varchar(50) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `g_user_title` varchar(50) CHARACTER SET utf8;

--online

ALTER TABLE online

DEFAULT CHARSET=utf8,

MODIFY COLUMN `ident` varchar(200) CHARACTER SET utf8 not null DEFAULT '';

--posts

ALTER TABLE posts

DEFAULT CHARSET=utf8,

MODIFY COLUMN `poster` varchar(200) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `poster_ip` varchar(15) CHARACTER SET utf8,
MODIFY COLUMN `poster_email` varchar(50) CHARACTER SET utf8,
MODIFY COLUMN `message` text CHARACTER SET utf8,
MODIFY COLUMN `edited_by` varchar(200) CHARACTER SET utf8 not null DEFAULT '';

--ranks

ALTER TABLE ranks

DEFAULT CHARSET=utf8,

MODIFY COLUMN `rank` varchar(50) CHARACTER SET utf8 not null DEFAULT '';

--reports

ALTER TABLE reports

DEFAULT CHARSET=utf8,

MODIFY COLUMN `message` text CHARACTER SET utf8;

--search_table

ALTER TABLE search_cache

DEFAULT CHARSET=utf8,

MODIFY COLUMN `ident` varchar(200) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `search_data` text CHARACTER SET utf8;

--search_matches

ALTER TABLE search_matches

DEFAULT CHARSET=utf8;

--search_words

ALTER TABLE search_words

DEFAULT CHARSET=utf8,

MODIFY COLUMN `word` varchar(20) CHARACTER SET utf8 COLLATE utf8_bin not null DEFAULT '';

--subscriptions

ALTER TABLE subscriptions

DEFAULT CHARSET=utf8;

--topics

ALTER TABLE topics

DEFAULT CHARSET=utf8,

MODIFY COLUMN `poster` varchar(200) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `subject` varchar(255) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `last_poster` varchar(200) CHARACTER SET utf8;

--users

ALTER TABLE users

DEFAULT CHARSET=utf8,

MODIFY COLUMN `username` varchar(200) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `password` varchar(40) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `email` varchar(50) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `title` varchar(40) CHARACTER SET utf8,
MODIFY COLUMN `realname` varchar(40) CHARACTER SET utf8,
MODIFY COLUMN `url` varchar(100) CHARACTER SET utf8,
MODIFY COLUMN `jabber` varchar(75) CHARACTER SET utf8,
MODIFY COLUMN `icq` varchar(12) CHARACTER SET utf8,
MODIFY COLUMN `msn` varchar(50) CHARACTER SET utf8,
MODIFY COLUMN `aim` varchar(30) CHARACTER SET utf8,
MODIFY COLUMN `yahoo` varchar(30) CHARACTER SET utf8,
MODIFY COLUMN `location` varchar(30) CHARACTER SET utf8,
MODIFY COLUMN `signature` text CHARACTER SET utf8,
MODIFY COLUMN `language` varchar(25) CHARACTER SET utf8 not null DEFAULT 'English',
MODIFY COLUMN `style` varchar(25) CHARACTER SET utf8 not null DEFAULT 'Oxygen',
MODIFY COLUMN `registration_ip` varchar(15) CHARACTER SET utf8 not null DEFAULT '0.0.0.0',
MODIFY COLUMN `admin_note` varchar(30) CHARACTER SET utf8,
MODIFY COLUMN `activate_string` varchar(50) CHARACTER SET utf8,
MODIFY COLUMN `activate_key` varchar(8) CHARACTER SET utf8;

https://punbb.informer.com/forums/topic … sion-help/
https://punbb.informer.com/forums/topic … from-1215/
https://punbb.informer.com/forums/topic … s-1221-14/

If I'm not mistaken, punbb 1.2.x will not be able to work with the utf-8 base, since in this version of the engine all string functions are designed for single-byte character encoding.

You need to make a one-to-one duplicate of the old forum database.

And then try to convert the copy to utf-8:

1. Or with punbb 1.4.4 (my variant https://github.com/MioVisman/punbb should work up to php 8.0.1 and mysql 8+). Although I did not check the database conversion script for punbb. To update, you need to run the admin/db_update.php file.

2. Or using FluxBB_by_Visman (https://github.com/MioVisman/FluxBB_by_Visman). The result is a FluxBB forum, but there are still old styles from punbb 1.2. In this assembly, I improved the conversion from punbb 1.2, since I converted my old forum. At the beginning of the conversion, you will need to select the correct encoding of the source data. The conversion should start on its own.

In both cases, you need to configure the config.php file specifying the correct connection to convertible database:

1. An example config.php file for punbb 1.4.4 (the file is in the root of the forum):

<?php

$db_type = 'mysqli_innodb';   // here is your type of connection to the database
$db_host = '...';    
$db_name = '...';    
$db_username = '...';   
$db_password = '...';  
$db_prefix = '...'; 
$p_connect = false;

$base_url = 'http://...';

$cookie_name = 'forum_cookie_...';
$cookie_domain = '';
$cookie_path = '/';
$cookie_secure = 0;

define('FORUM', 1);

// Enable DEBUG mode by removing // from the following line
define('FORUM_DEBUG', 1);

// Enable show DB Queries mode by removing // from the following line
define('FORUM_SHOW_QUERIES', 1);

// Enable forum IDNA support by removing // from the following line
//define('FORUM_ENABLE_IDNA', 1);

// Disable forum CSRF checking by removing // from the following line
//define('FORUM_DISABLE_CSRF_CONFIRM', 1);

// Disable forum hooks (extensions) by removing // from the following line
//define('FORUM_DISABLE_HOOKS', 1);

// Disable forum output buffering by removing // from the following line
//define('FORUM_DISABLE_BUFFERING', 1);

// Disable forum async JS loader by removing // from the following line
//define('FORUM_DISABLE_ASYNC_JS_LOADER', 1);

// Disable forum extensions version check by removing // from the following line
//define('FORUM_DISABLE_EXTENSIONS_VERSION_CHECK', 1);

// SQLite3 busy timeout -> after waiting for that time we get 'db is locked' error (in msec)
//define('FORUM_SQLITE3_BUSY_TIMEOUT', 10000);

// SQLite3 WAL mode has better control over concurrency. Source: https://www.sqlite.org/wal.html
//define('FORUM_SQLITE3_WAL_ON', 1);

2. Sample config.php file for FluxBB_by_Visman (located in the include/ directory of the forum directory):

<?php

$db_type = 'mysqli_innodb';   // here is your type of connection to the database
$db_host = '...';
$db_name = '...';
$db_username = '...';
$db_password = '...';
$db_prefix = '...';
$p_connect = false;

$cookie_name = 'pun_cookie_...';
$cookie_domain = '';
$cookie_path = '/';
$cookie_secure = 0;
$cookie_seed = '...'; // random string
$cookie_samesite = 'Lax'; // Strict, Lax or None

$salt1 = '';

define('PUN', 1);

define('PUN_DEBUG', 1);
define('PUN_SHOW_QUERIES', 1);
define('PUN_MAX_POSTSIZE', 65535);
//define('FORUM_EOL', "\r\n"); // possible values can be PHP_EOL, "\r\n", "\n" or "\r"
//define('FORUM_UA_OFF', 1);
define('FORUM_AJAX_JQUERY', 'https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js');
//define('FORUM_SQLITE3_BUSY_TIMEOUT', 10000);
//define('FORUM_SQLITE3_WAL_ON', 1);

//error_reporting(E_ALL);
//ini_set('display_errors', 1);
//ini_set('log_errors', 1);

P.S. More information about FluxBB by Visman: https://fluxbb.org/forums/viewtopic.php?id=4941
P.P.S. Don't forget about backups wink

38

(4 replies, posted in PunBB 1.4 additions)

>Do you have a private board where all your extensions are installed?
No, just a test forum on the local computer.

39

(5 replies, posted in PunBB 1.4 additions)

Use https://punbb.informer.com/forums/topic … oilernojs/ instead of this extension.

[Extension] Spoiler BBcode (no javascript)

Add BBcode tag «spoiler».
This bbcode uses html <details> and <summary> tags for its display.
Can I use: https://caniuse.com/details

v 1.0.0 https://github.com/MioVisman/punbb_exte … oiler_nojs

P.S. You can use only one of the extensions at a time: either sva_spoiler or sva_spoiler_nojs.

https://i.ibb.co/61CBSbk/spoilernojs.png

41

(0 replies, posted in Discussions)

By default, there are no security headers in PunBB.
This is how it looks here:
https://i.ibb.co/qmvZp1M/sec3.png
https://i.ibb.co/k69gtXS/sec4.png

My example additional commands to apache .htaccess file

<ifModule mod_headers.c>
  # Set security headers if missing.
  # (This Content-Security-Policy makes almost no sense (there are many inline scripts and styles on the forum, frames from media sites are allowed).)
  #
  ### Chances are, you will have to customize the permissions for your forum individually. ###
  ### If your Apache version is lower than 2.4.10 then remove all "expr = -z% {resp: ...}" ###
  #
  Header always set Content-Security-Policy "object-src 'none';frame-ancestors 'none';base-uri 'none';form-action 'self'" "expr=-z %{resp:Content-Security-Policy}"
  Header always set Feature-Policy "accelerometer 'none';ambient-light-sensor 'none';autoplay 'none';battery 'none';camera 'none';document-domain 'self';fullscreen 'self';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';midi 'none';payment 'none';picture-in-picture 'none';sync-xhr 'self';usb 'none'" "expr=-z %{resp:Feature-Policy}"
  Header always set Referrer-Policy "origin-when-cross-origin" "expr=-z %{resp:Referrer-Policy}"
#  Header set Strict-Transport-Security "max-age=31536000" "expr=-z %{resp:Strict-Transport-Security}"
  Header always set X-Content-Type-Options "nosniff" "expr=-z %{resp:X-Content-Type-Options}"
  Header always set X-Frame-Options "DENY" "expr=-z %{resp:X-Frame-Options}"
  Header always set X-XSS-Protection "1; mode=block" "expr=-z %{resp:X-XSS-Protection}"
  Header always set Permissions-Policy "accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),camera=(),document-domain=(self),fullscreen=(self),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),sync-xhr=(self),usb=()" "expr=-z %{resp:Permissions-Policy}"

  # Remove headers containing php information
  Header unset X-Powered-By
  Header always unset X-Powered-By
</ifModule>

# Hiding information about the system
ServerSignature Off
#ServerTokens ProductOnly # Use only in server config, do not use in .htaccess

It is problematic to establish a normal Content-Security-Policy sad

42

(153 replies, posted in Supported extensions)

You can try to edit the files:
/extensions/pun_pm/url/Folder_based.php
/extensions/pun_pm/url/Folder_based_(fancy).php

But if there are collisions with other paths, then some of them will not be available.

try https://github.com/MioVisman/punbb_exte … inks_blank

My opinion: the user should decide for himself how to open the link. To do this, he has a click on the mouse wheel.

target="_blank"

This method is insecure. A site on an open tab gets full access to the parent tab.

45

(10 replies, posted in PunBB 1.4 additions)

try

.kt_newpost_hl > a{
    font-weight: bold;
    color: #C60000;
}

46

(10 replies, posted in PunBB 1.4 additions)

https://github.com/MioVisman/punbb_exte … newpost_hl

I can only suggest searching the internet for punbb forums with homemade themes (bootstrap based themes).

48

(3 replies, posted in Feature requests)

for text:
misc.php (line 584 for my version)

<span class="submit primary caution"><input type="submit" name="submit" value="<?php echo $lang_common['Submit'] ?>" /></span>

replace to

<span class="submit primary caution"><input type="submit" name="submit" value="<?php echo $lang_misc['Report post'] ?>" /></span>

49

(3 replies, posted in Feature requests)

https://github.com/MioVisman/punbb/comm … fb2e0f58d0

50

(31 replies, posted in Feature requests)

The button works and addressing the user via @ also works.
https://i.ibb.co/5sRbbhs/note1.png https://i.ibb.co/VQCqd4x/note2.png

Perhaps your scripts are not loading or there is an error while executing javascript.
Open the browser console (F12) and look at file availability and errors.