26

(2 replies, posted in Feature requests)

sva_do_not_delete v 1.0.0
https://github.com/MioVisman/punbb_exte … not_delete

Moderators rights to delete topics are assigned as for ordinary users (use groups settings).
Administration → Users → Groups → Edit all groups → Allow users to delete their own topics (including any replies) = OFF

27

(4 replies, posted in PunBB 1.4 additions)

v 1.0.2

Fix for delete/edit post/topic.

28

(7 replies, posted in PunBB 1.4 bug reports)

In the database, try changing the type for the online table from MEMORY to the one specified for the rest of the tables (MyISAM or InnoDB).

29

(6 replies, posted in PunBB 1.4 troubleshooting)

Of PunBB and FuxBbB which would you choose to adopt at this point?

I wouldn't choose anything now.  There are no developers, support 1-2 people, will soon disappear smile

30

(6 replies, posted in PunBB 1.4 troubleshooting)

My version supports both php 7, php 8, and mysql 8.

Version 1.4.5 has an unknown author, as punbb has long been abandoned by the development team.
https://punbb.informer.com/forums/topic … 72-and-74/

You use punbb at your own risk.

From the old forum engines I can recommend phpbb, there are both developers and communities.
Of the new ones - flarum, although they still keep it in beta.

31

(4 replies, posted in Discussions)

I am the last moderator of this forum. Administrators have not been here for 2 years, if not more. Google Captcha is not a barrier to spammers. Before I started blocking domains from which spammers are coming, up to several dozen spammers were registered per day. The moderator has limited rights and can only ban and delete posts.

32

(6 replies, posted in PunBB 1.4 troubleshooting)

https://github.com/MioVisman/punbb

Download this archive: https://github.com/MioVisman/punbb/archive/master.zip
Unpack the archive to your website.
And make a new installation of the forum (since your forum has just been created, you should not have anything important there).

>Just installed PunBB 1.4.5 via Softaculous
Nobody supports version 1.4.5.

33

(4 replies, posted in Discussions)

Are you talking about this forum?

34

(75 replies, posted in News)

27. Update .htaccess for apache 2.4
https://github.com/MioVisman/punbb/comm … f0f2261528

28. Fix get_table_info() method in SQLite3 driver
https://github.com/MioVisman/punbb/comm … c30abb582b

29. Fix for PHP 8
https://github.com/MioVisman/punbb/comm … 212c48614e
https://github.com/MioVisman/punbb/comm … e74f866ab3

30. Change get_tracked_topics() function
https://github.com/MioVisman/punbb/comm … 98a7c356c0

31. Add SameSite for setcookie()
https://github.com/MioVisman/punbb/comm … d143a67747

32. Change the color of the button for the report to the cautious
https://github.com/MioVisman/punbb/comm … fb2e0f58d0

33. Fix pattern for ip
https://github.com/MioVisman/punbb/comm … b8169a08db

34. Update .htaccess.dist (Add security headers)
https://github.com/MioVisman/punbb/comm … 2c29f5c5ca

35. Security: Update random_key() function for PHP7+
https://github.com/MioVisman/punbb/comm … 6aead51b4e

36. Add canonical link for topic pages (To remove duplicate pages, if any.)
https://github.com/MioVisman/punbb/comm … 1b22f76809

37. There is a need to censor navigation links
https://github.com/MioVisman/punbb/comm … 3ab7684e69

UP 2021-03-13

38. Fix search (Uncaught Error: mysqli_result object is already closed in ...) for PHP 8
https://github.com/MioVisman/punbb/comm … f11550a9ef

UP 2021-03-17

39. Change email bbcode
https://github.com/MioVisman/punbb/comm … 547f79e3d1

    (P.S. Change the handler so that the html validator doesn't swear at bad emails addresses.)
    (P.P.S. I doubt that XSS can exist where all the text characters ', ", < and > are replaced with html entities.)
    (P.P.P.S. In PunBB 1.4.6, everything is done wrong tongue)

35

(75 replies, posted in Supported extensions)

v 0.3.3.3
https://github.com/MioVisman/punbb_exte … _stop_bots

This version does not use cookies.
User is asked only once, the guest is asked every time.

P.S. I don't use Chrome (it transfers too much data to Google).

36

(75 replies, posted in Supported extensions)

You said, it will ask every 2 weeks after that?

yes

so it seems to be a cookie problem with google chrome, not php version.

Open the console in Chrome (F12 if I'm not mistaken), enable output of both errors and warnings, then test sending messages.
Turn on the continuous console so that messages are not lost after a page refresh.

Which extension are you talking about ?

https://punbb.informer.com/forums/topic … nstopbots/

Further here https://punbb.informer.com/forums/post/158624/#p158624

39

(75 replies, posted in Supported extensions)

v 0.3.3.2
https://github.com/MioVisman/punbb_exte … _stop_bots

Add PHP 7.2-8.0 compatibility.
Remove potential vulnerabilities.
Add compatibility with non-Latin answers.
Remove cache regeneration by timeout.

the other problem is that it asks questions to members

The question is asked to users once every 2 weeks.

I have some errors on this extension,

What specific bugs are there in this extension?

42

(31 replies, posted in Feature requests)

https://i.ibb.co/Hd7zL21/notify.png

An article on your topic (not punbb): https://nicj.net/mysql-converting-an-in … n-to-utf8/

Although you have the page encoding iso-8859-1 set, the actual database may be ISO-8859-15, Windows-1252 https://en.wikipedia.org/wiki/ISO/IEC_8 … e_coverage

I've got an error when i try to post :

Enable debug mode in config.php:

// Enable DEBUG mode by removing // from the following line
define('FORUM_DEBUG', 1);

and look in the server error log error.log.

I think this script could be my solution, but it is not more available

The Internet archive remembers this script:

~ PunBB 1.2 -> PunBB 1.3 database preparation ~
(tested successfully during a real forum migration)

Converts latin1 (or whatever) colums to utf8 manually, and prevents loss of data due to special chars.
This does NOT convert 1.2 database to 1.3 format, it only alters the charset, you still need to run db_update.php script to convert your db.
>> After executing this script, you MUST NOT SELECT "Enable conversation", or you will lose data if sone of your entries contain special chars.

<?>    This script assumes your data is in the same format as your headers (which is the case most of the time)
    Please backup/dump your database before using my script for safety.

<!> Don't forget to change the USE statement at line 25

Read this topic for more information:
http://punbb.informer.com/forums/post/140765/#p140765


    tOnI0 (punBB official forum)
    contact: tonio.cotten@gnail.com
    03/08/2011

*/

USE myDbName --your punBB 1.2 Database name

--bans

ALTER TABLE bans

DEFAULT CHARSET=utf8,

MODIFY COLUMN `username` varchar(200) CHARACTER SET utf8,
MODIFY COLUMN `ip` varchar(255) CHARACTER SET utf8,
MODIFY COLUMN `email` varchar(50) CHARACTER SET utf8,
MODIFY COLUMN `message` varchar(255) CHARACTER SET utf8;

--categories

ALTER TABLE categories

DEFAULT CHARSET=utf8,

MODIFY COLUMN `cat_name` varchar(80) CHARACTER SET utf8 not null DEFAULT 'New Category';

--censoring

ALTER TABLE censoring

DEFAULT CHARSET=utf8,

MODIFY COLUMN `search_for` varchar(60) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `replace_with` varchar(60) CHARACTER SET utf8 not null DEFAULT '';

--config

ALTER TABLE config

DEFAULT CHARSET=utf8,

MODIFY COLUMN `conf_name` varchar(255) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `conf_value` text CHARACTER SET utf8;

--forums

ALTER TABLE forums

DEFAULT CHARSET=utf8,

MODIFY COLUMN `forum_name` varchar(80) CHARACTER SET utf8 not null DEFAULT 'New Forum',
MODIFY COLUMN `forum_desc` text CHARACTER SET utf8,
MODIFY COLUMN `redirect_url` varchar(100) CHARACTER SET utf8,
MODIFY COLUMN `moderators` text CHARACTER SET utf8,
MODIFY COLUMN `last_poster` varchar(200) CHARACTER SET utf8;

--perms

ALTER TABLE forum_perms

DEFAULT CHARSET=utf8;

--groups

ALTER TABLE groups

DEFAULT CHARSET=utf8,

MODIFY COLUMN `g_title` varchar(50) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `g_user_title` varchar(50) CHARACTER SET utf8;

--online

ALTER TABLE online

DEFAULT CHARSET=utf8,

MODIFY COLUMN `ident` varchar(200) CHARACTER SET utf8 not null DEFAULT '';

--posts

ALTER TABLE posts

DEFAULT CHARSET=utf8,

MODIFY COLUMN `poster` varchar(200) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `poster_ip` varchar(15) CHARACTER SET utf8,
MODIFY COLUMN `poster_email` varchar(50) CHARACTER SET utf8,
MODIFY COLUMN `message` text CHARACTER SET utf8,
MODIFY COLUMN `edited_by` varchar(200) CHARACTER SET utf8 not null DEFAULT '';

--ranks

ALTER TABLE ranks

DEFAULT CHARSET=utf8,

MODIFY COLUMN `rank` varchar(50) CHARACTER SET utf8 not null DEFAULT '';

--reports

ALTER TABLE reports

DEFAULT CHARSET=utf8,

MODIFY COLUMN `message` text CHARACTER SET utf8;

--search_table

ALTER TABLE search_cache

DEFAULT CHARSET=utf8,

MODIFY COLUMN `ident` varchar(200) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `search_data` text CHARACTER SET utf8;

--search_matches

ALTER TABLE search_matches

DEFAULT CHARSET=utf8;

--search_words

ALTER TABLE search_words

DEFAULT CHARSET=utf8,

MODIFY COLUMN `word` varchar(20) CHARACTER SET utf8 COLLATE utf8_bin not null DEFAULT '';

--subscriptions

ALTER TABLE subscriptions

DEFAULT CHARSET=utf8;

--topics

ALTER TABLE topics

DEFAULT CHARSET=utf8,

MODIFY COLUMN `poster` varchar(200) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `subject` varchar(255) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `last_poster` varchar(200) CHARACTER SET utf8;

--users

ALTER TABLE users

DEFAULT CHARSET=utf8,

MODIFY COLUMN `username` varchar(200) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `password` varchar(40) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `email` varchar(50) CHARACTER SET utf8 not null DEFAULT '',
MODIFY COLUMN `title` varchar(40) CHARACTER SET utf8,
MODIFY COLUMN `realname` varchar(40) CHARACTER SET utf8,
MODIFY COLUMN `url` varchar(100) CHARACTER SET utf8,
MODIFY COLUMN `jabber` varchar(75) CHARACTER SET utf8,
MODIFY COLUMN `icq` varchar(12) CHARACTER SET utf8,
MODIFY COLUMN `msn` varchar(50) CHARACTER SET utf8,
MODIFY COLUMN `aim` varchar(30) CHARACTER SET utf8,
MODIFY COLUMN `yahoo` varchar(30) CHARACTER SET utf8,
MODIFY COLUMN `location` varchar(30) CHARACTER SET utf8,
MODIFY COLUMN `signature` text CHARACTER SET utf8,
MODIFY COLUMN `language` varchar(25) CHARACTER SET utf8 not null DEFAULT 'English',
MODIFY COLUMN `style` varchar(25) CHARACTER SET utf8 not null DEFAULT 'Oxygen',
MODIFY COLUMN `registration_ip` varchar(15) CHARACTER SET utf8 not null DEFAULT '0.0.0.0',
MODIFY COLUMN `admin_note` varchar(30) CHARACTER SET utf8,
MODIFY COLUMN `activate_string` varchar(50) CHARACTER SET utf8,
MODIFY COLUMN `activate_key` varchar(8) CHARACTER SET utf8;

https://punbb.informer.com/forums/topic … sion-help/
https://punbb.informer.com/forums/topic … from-1215/
https://punbb.informer.com/forums/topic … s-1221-14/

If I'm not mistaken, punbb 1.2.x will not be able to work with the utf-8 base, since in this version of the engine all string functions are designed for single-byte character encoding.

You need to make a one-to-one duplicate of the old forum database.

And then try to convert the copy to utf-8:

1. Or with punbb 1.4.4 (my variant https://github.com/MioVisman/punbb should work up to php 8.0.1 and mysql 8+). Although I did not check the database conversion script for punbb. To update, you need to run the admin/db_update.php file.

2. Or using FluxBB_by_Visman (https://github.com/MioVisman/FluxBB_by_Visman). The result is a FluxBB forum, but there are still old styles from punbb 1.2. In this assembly, I improved the conversion from punbb 1.2, since I converted my old forum. At the beginning of the conversion, you will need to select the correct encoding of the source data. The conversion should start on its own.

In both cases, you need to configure the config.php file specifying the correct connection to convertible database:

1. An example config.php file for punbb 1.4.4 (the file is in the root of the forum):

<?php

$db_type = 'mysqli_innodb';   // here is your type of connection to the database
$db_host = '...';    
$db_name = '...';    
$db_username = '...';   
$db_password = '...';  
$db_prefix = '...'; 
$p_connect = false;

$base_url = 'http://...';

$cookie_name = 'forum_cookie_...';
$cookie_domain = '';
$cookie_path = '/';
$cookie_secure = 0;

define('FORUM', 1);

// Enable DEBUG mode by removing // from the following line
define('FORUM_DEBUG', 1);

// Enable show DB Queries mode by removing // from the following line
define('FORUM_SHOW_QUERIES', 1);

// Enable forum IDNA support by removing // from the following line
//define('FORUM_ENABLE_IDNA', 1);

// Disable forum CSRF checking by removing // from the following line
//define('FORUM_DISABLE_CSRF_CONFIRM', 1);

// Disable forum hooks (extensions) by removing // from the following line
//define('FORUM_DISABLE_HOOKS', 1);

// Disable forum output buffering by removing // from the following line
//define('FORUM_DISABLE_BUFFERING', 1);

// Disable forum async JS loader by removing // from the following line
//define('FORUM_DISABLE_ASYNC_JS_LOADER', 1);

// Disable forum extensions version check by removing // from the following line
//define('FORUM_DISABLE_EXTENSIONS_VERSION_CHECK', 1);

// SQLite3 busy timeout -> after waiting for that time we get 'db is locked' error (in msec)
//define('FORUM_SQLITE3_BUSY_TIMEOUT', 10000);

// SQLite3 WAL mode has better control over concurrency. Source: https://www.sqlite.org/wal.html
//define('FORUM_SQLITE3_WAL_ON', 1);

2. Sample config.php file for FluxBB_by_Visman (located in the include/ directory of the forum directory):

<?php

$db_type = 'mysqli_innodb';   // here is your type of connection to the database
$db_host = '...';
$db_name = '...';
$db_username = '...';
$db_password = '...';
$db_prefix = '...';
$p_connect = false;

$cookie_name = 'pun_cookie_...';
$cookie_domain = '';
$cookie_path = '/';
$cookie_secure = 0;
$cookie_seed = '...'; // random string
$cookie_samesite = 'Lax'; // Strict, Lax or None

$salt1 = '';

define('PUN', 1);

define('PUN_DEBUG', 1);
define('PUN_SHOW_QUERIES', 1);
define('PUN_MAX_POSTSIZE', 65535);
//define('FORUM_EOL', "\r\n"); // possible values can be PHP_EOL, "\r\n", "\n" or "\r"
//define('FORUM_UA_OFF', 1);
define('FORUM_AJAX_JQUERY', 'https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js');
//define('FORUM_SQLITE3_BUSY_TIMEOUT', 10000);
//define('FORUM_SQLITE3_WAL_ON', 1);

//error_reporting(E_ALL);
//ini_set('display_errors', 1);
//ini_set('log_errors', 1);

P.S. More information about FluxBB by Visman: https://fluxbb.org/forums/viewtopic.php?id=4941
P.P.S. Don't forget about backups wink

47

(4 replies, posted in PunBB 1.4 additions)

>Do you have a private board where all your extensions are installed?
No, just a test forum on the local computer.

48

(5 replies, posted in PunBB 1.4 additions)

Use https://punbb.informer.com/forums/topic … oilernojs/ instead of this extension.

[Extension] Spoiler BBcode (no javascript)

Add BBcode tag «spoiler».
This bbcode uses html <details> and <summary> tags for its display.
Can I use: https://caniuse.com/details

v 1.0.0 https://github.com/MioVisman/punbb_exte … oiler_nojs

P.S. You can use only one of the extensions at a time: either sva_spoiler or sva_spoiler_nojs.

https://i.ibb.co/61CBSbk/spoilernojs.png

50

(0 replies, posted in Discussions)

By default, there are no security headers in PunBB.
This is how it looks here:
https://i.ibb.co/qmvZp1M/sec3.png
https://i.ibb.co/k69gtXS/sec4.png

My example additional commands to apache .htaccess file

<ifModule mod_headers.c>
  # Set security headers if missing.
  # (This Content-Security-Policy makes almost no sense (there are many inline scripts and styles on the forum, frames from media sites are allowed).)
  #
  ### Chances are, you will have to customize the permissions for your forum individually. ###
  ### If your Apache version is lower than 2.4.10 then remove all "expr = -z% {resp: ...}" ###
  #
  Header always set Content-Security-Policy "object-src 'none';frame-ancestors 'none';base-uri 'none';form-action 'self'" "expr=-z %{resp:Content-Security-Policy}"
  Header always set Feature-Policy "accelerometer 'none';ambient-light-sensor 'none';autoplay 'none';battery 'none';camera 'none';document-domain 'self';fullscreen 'self';geolocation 'none';gyroscope 'none';magnetometer 'none';microphone 'none';midi 'none';payment 'none';picture-in-picture 'none';sync-xhr 'self';usb 'none'" "expr=-z %{resp:Feature-Policy}"
  Header always set Referrer-Policy "origin-when-cross-origin" "expr=-z %{resp:Referrer-Policy}"
#  Header set Strict-Transport-Security "max-age=31536000" "expr=-z %{resp:Strict-Transport-Security}"
  Header always set X-Content-Type-Options "nosniff" "expr=-z %{resp:X-Content-Type-Options}"
  Header always set X-Frame-Options "DENY" "expr=-z %{resp:X-Frame-Options}"
  Header always set X-XSS-Protection "1; mode=block" "expr=-z %{resp:X-XSS-Protection}"
  Header always set Permissions-Policy "accelerometer=(),ambient-light-sensor=(),autoplay=(),battery=(),camera=(),document-domain=(self),fullscreen=(self),geolocation=(),gyroscope=(),magnetometer=(),microphone=(),midi=(),payment=(),picture-in-picture=(),sync-xhr=(self),usb=()" "expr=-z %{resp:Permissions-Policy}"

  # Remove headers containing php information
  Header unset X-Powered-By
  Header always unset X-Powered-By
</ifModule>

# Hiding information about the system
ServerSignature Off
#ServerTokens ProductOnly # Use only in server config, do not use in .htaccess

It is problematic to establish a normal Content-Security-Policy sad