shrek1609

Re: SMALL security mod   hmm i guess then the only way to secure against that would be to do an ip check for all staff, however that would be a problem with dynamic ip's

Re: SMALL security mod nice idea but maybe a better idea would be to have an array with all the staff admins userid's in and a check to see if that user is in that array if not they are fedded... so any hacker who gains themselves admin status is auto fedded ;)

Re: Add Super rewards points to your site!!! thanks shedh :) just to add i don't think its a problem with this mod but a problem with the points site as i have created just a simple postback file with a single query to update my crystals by 100 which works on a manual call, but doesn't work on the test you can run... so seems the points site is not calling this file after a test... just doing a couple of offers to test it and see what happens

Re: Add Super rewards points to your site!!! having problems with this everytime i do a test payment its not crediting the crystals, seems like its not posting back from the points site :?

Re: Passwords and MD5 encryption query... thanks for that :) i'll have a go at coding this together this week and will post the code if i get it working well :)

Re: Passwords and MD5 encryption query... hmm so what would you say would be better for security, md5 + salts or sha 256/512 bearing in mind i have seen sha rainbow tables (not used so no idea if they are any good)

Re: Passwords and MD5 encryption query...   yeah this is what has led me to posting this, this is the way i was obtaining the passwords so technically i guess not reversable but as you say getable...

Re: Passwords and MD5 encryption query... thanks folks lot to think about there, i do like the idea of using the email addy as an additional key for the encryption with md5 and i would have thought not too hard to code in....

Re: Hacking I have to agree with you their Haunted, i knew nothing about php a year ago and i am still learning now... When i first started anything i couldn't do myself i hired people to do it, then i started to learn thanks to CE and many kind people... I run a dedicated server, which backups my games every 24 hours and i also do hard backups to my pc once a week, which i then backup again on to an external hard drive... These last couple of months i have realised that the way i learned php was wrong, ie i can code a script but not securely, hence the last couple of months i have been relearning to code securely and again thanks to CE i have now cracked this :)

Ok this is just a thought i have had, one of the most common hacks/exploits is the obtaining the md5 hash from the database via certain files within mccodes... Now as i understand it MD5 is not reversable however there is away to find passwords that have been encrypted via MD5 (for obvious reasons i wont go into that more) now i've just been playing with this method of cracking MD5 hashes and found that if it was a letters only password i could reverse the MD5 hash and gain the password... however if the password contained both letters and numbers then i couldn't... So my thought is for ADDED security would it not be an idea for me to make a mod that only allows passwords that have to contain x amount of letters and x amount of numbers ? Now i know one reply will be secure properly and no need for this, BUT surely this would be ADDED protection ? views and opinions please...

Re: Visability     you've got this the wrong way round mate... >4 means anyone level 5 or over can see <4 means only levels 1,2 and 3 will be able to see it

Re: Bought the ipn_donator mod from cronus, doesn't work and no support need help   i cannot comment on plintu's situation however i do not believe that i in anyway acted impatient... after 72 hours from last message sent to him i follow up with a message to him then to be accused of spamming him plus not knowing how to install a mod...

Re: Bought the ipn_donator mod from cronus, doesn't work and no support need help Cronus you really need to take some lessons in how to deal with customers!!! Your attitude towards your customers is appalling... after having purchased your newspaper mod which which heavily bugged i contact you on your site and send you 3 messages over a 72 hour period, first message requesting help, to which you reply file a support ticket, i file the support ticket and send you a quick message back to say i have filed it... OVER 72 hours later after no reply from you, i message you again on your site to which you reply "stop spamming me" You then further go on to state "its not your fault if i don't know how to install a mod" Now i am no little kid who you can just claim to be spouting off, i am 38 years old and have ran and managed various businesses ventures past and present and always looked after my customers... I treat people with the respect in the hopes that same respect is returned... To me you were rude and arrogant and someone i certainly would NEVER deal with again. Having said that i have purchased many mods off CE and on the whole had excellent service from them, most recently blue devil with his gym mod and delite with his voting script... Both i have talked to and blue devil even added extra's to the scripts on my suggestion and re-released for free... Cronus if you want to make a success in your business venture then i would seriously look at calming down and looking after your customers with a bit more respect. For at some point you will run out of people who trust both you and your mods....

Re: a couple of mods $q=$db->query("SELECT * FROM users where user_level = 0 and hospital =0 limit 20");   this line is selecting the npc's if you only want it to select a certain amount change limit 20

Re: Item 10$ yeah as far as i am aware ravan script is mccodes, isn't ravan script a nulled version of mccodes, i do know its supposed to be very buggy

Re: Item 10$ Its fairly simple to add an item... Item name = what the item is to be called ie knife, sword etc item description = now i use this to show what it does ie 5% strength increase etc item type = weapons, armour or what ever you want that type of item to be ( these need setting up in item "add item type" item buyable = whether you want the item to be able to purchased for in game cash or not... ok the effects... you can use these or not use them your choice i only use these for disposable items for example will potion which puts will back to 100%... to use these effects check the box for on... then select what you want it to do ie increase strength, guard, will etc... next drop down self explanatory whether you want it to increase or decrease the selected stat... if you choose percentage then it will increase or decrease by a set percentage ie 100 on energy would put energy back to full 50 back to half full... if you choose value then it will increase or decrease by the amount entered ie 100 on energy would increase it by 100 (which could take it over their max amount ;) for weapons and armour don't check any of the effects leave them alone, for a weapon just add in weapon power the values 1.xx so if you wanted a weapon to give a bonus strength of 50% you would put 1.50.... 75% would be 1.75 make sure put 0 in the armour box... same for armour same as above but use appropriate boxes... and there you have it i've just saved you a $10 :-D

Re: New member search... no problem glad you liked it :)

Re: Using time? sorry haunted i thought it was just h for time... shouldn't the cron query be setting item_received back to 0 ready for the next day and a sql query in the if statement updating item_received to 1 ?

Re: Using time? isn't there a typo here...   if(!$ir['item_recieved']) { if(date('g') <= 7 && date('g') >= 9) { echo 'You landed it, and it is the right time! You just found item x'; item_add($ir['userid'], 59, 1); } }   shouldn't it be   if(!$ir['item_recieved']) { if(date('h') <= 7 && date('h') >= 9) { echo 'You landed it, and it is the right time! You just found item x'; item_add($ir['userid'], 59, 1); } }   g next to h typo me thinks :-D

Re: BBCODE Youtube you probably don't have standard bbcode set up in users profiles then...

Re: [mccodes V2] Add any type of video media to your game   cheers Haunted but just cracked it, solution is one thread down from this :D managed to suss it out and inserted into existing bbcode

Just clicked on how to do this :-D for members to view bbcode on their profiles or on forum... open either forum.php or viewuser.php find   $this->engine->cust_tag("/\[right\](.+?)\[\/right\]/","<div align='right'>\\1</div>");   after add   $this->engine->cust_tag("/\[youtube\](.+?)\[\/youtube\]/","<object width='560' height='340'><param name='movie' value='http://www.youtube.com/v/\\1'></param><param name='allowFullScreen' value='true'></param><param name='allowscriptaccess' value='always'></param><embed src='http://www.youtube.com/v/\\1' type='application/x-shockwave-flash' allowscriptaccess='always' allowfullscreen='true' width='560' height='340'></embed></object>");   for the video to work they will use the bbcode tags of... OfK9gvnngY4 the OfK9gvnngY4 is whatever number is after the v= in the youtube url ie

Re: Help with auto ipn     LMAO I purchased the newspaper mod off cronus, mod does not work... i messaged him on his site to be told to file a support ticket which i did and replied saying i had filed one... over 72 hours later NO reply to support ticket, message him ingame asking if there was any update on this... to which his reply was stop spamming me... (so 3 messages over 72+ hours is spamming!!!) His other comment to me was its not his fault if i don't know how to install a mod!!! I ended up telling him to keep the money and forget the support... Never will i buy from cronus again!!!

Re: [mccodes V2] Add any type of video media to your game hi illusions i've been trying to work out a way to allow members to have you tube videos on their profiles by using BBCODE ie videoid i did post ages ago on here with regards to this but no one seemed to know how, this is a mod i would pay for if anyone would like to take it on board

Re: Weird problem it could be because you are declaring $u in the header then trying to declare it again in viewuser...