bocco Posted December 10, 2008 Posted December 10, 2008 so i looked around and could not find a fix for the forums. If you are having issues with deleting posts or topics or moving them use this. Tested and fully working You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Quote
bocco Posted December 10, 2008 Author Posted December 10, 2008 Re: Updated forums [mccodes v2] part 2 You're unable to view this code. Viewing code within this forum requires registration, you can register here for free. Quote
Mafia-Club Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] have you secured it and screenshots would be nice Quote
bocco Posted December 10, 2008 Author Posted December 10, 2008 Re: Updated forums [mccodes v2] the screen shots well it would be pointless since it is the normal forums, there was just 2 functions mission and that what was causing the errors Quote
Mafia-Club Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] Ah ok Quote
radio_active Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] Mafia-Club, it has not been secured. I believe it was just two errors when deleting posts or something that he fixed which are in the Help section. I wouldn't use them if i was you. Quote
bocco Posted December 10, 2008 Author Posted December 10, 2008 Re: Updated forums [mccodes v2] the forums are secure if you are using $_GET['ID'] = abs(@intval($_GET['ID'])); $_GET['viewforum'] = abs(@intval($_GET['viewforum'])); $_GET['viewtopic'] = abs(@intval($_GET['viewtopic'])); in your header Quote
Eternal Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] the forums are secure if you are using $_GET['ID'] = abs(@intval($_GET['ID'])); $_GET['viewforum'] = abs(@intval($_GET['viewforum'])); $_GET['viewtopic'] = abs(@intval($_GET['viewtopic'])); in your header I have recently Came aware that that would not solve your problems on injecting the forums. That is a type of fix yes but you should get into the forums and get all down and dirty with it :P Quote
ShizzleNizzle Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] Yes im pretty sure there is two well known inject's for forum's. $_GET['ID'] = abs(@intval($_GET['ID'])); $_GET['viewforum'] = abs(@intval($_GET['viewforum'])); $_GET['viewtopic'] = abs(@intval($_GET['viewtopic'])); This only protect's one of the inject's i think... Quote
bocco Posted December 10, 2008 Author Posted December 10, 2008 Re: Updated forums [mccodes v2] well if someone can secure the forum that would be great Quote
radio_active Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] Hehehe the forums are secure if you are using $_GET['ID'] = abs(@intval($_GET['ID'])); $_GET['viewforum'] = abs(@intval($_GET['viewforum'])); $_GET['viewtopic'] = abs(@intval($_GET['viewtopic'])); in your header Completely secure with that, absolutely NO WAY that ANYWAY could hack into those brilliant forums that were coded so securely. As long as you have that. :lol: Duuuudeeeee you are soo incorrect, lol! The most secure files may be 99% secure, but there is always the 1% chance or so. Thats why banks employ "Programmers" to attempt to hack into there online sites and if they find a whole they patch it. And i assure you, the code used to make those online banking sites is x10000 more secure then any MCcode file. Just so we have that clear xD Quote
radio_active Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] well if someone can secure the forum that would be great People have been asking that for years, lol. Im sure whoever posts it for free some day will be highly respected but id recommend using SMF or BB3 forums and just implementing them into your site. Quote
Haunted Dawg Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] I do recall making this: $_GET['ID'] = abs(@intval($_GET['ID'])); $_GET['viewforum'] = abs(@intval($_GET['viewforum'])); $_GET['viewtopic'] = abs(@intval($_GET['viewtopic'])); And it does secure the forums. Quote
Eternal Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] I do recall making this: $_GET['ID'] = abs(@intval($_GET['ID'])); $_GET['viewforum'] = abs(@intval($_GET['viewforum'])); $_GET['viewtopic'] = abs(@intval($_GET['viewtopic'])); And it does secure the forums. ^LAWL i used that when some anonymous injector logged into my game as admin.. Also i would put in $_GET['reply'] = abs(@intval($_GET['reply'])); maybe one day someone will post theirs up here if it is allowed :P Quote
bocco Posted December 10, 2008 Author Posted December 10, 2008 Re: Updated forums [mccodes v2] thanks ill add that. I am also in talks with someone to make SMF work with the uses so they do not have to sign up again :) this person does not belong on MCCODES but he is one of the best coders i have ever seen. Quote
Solid Snake Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] Meh give the kid a break least he found the errors with the forums and fixed them and added the fix for free which hmmmm i dont see any of you guys doing the same maybe if its so insecure why dont you use your lil brains and give the unaware the fix make it secure do summit instead of critisizing people because they did a little error if there is an error bloody well fix it instead of being an ass and start complaining. Quote
radio_active Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] Having SMF work with the users is a very bad idea. WHY? Well. If a user signs up and they sign up for the SMF, great done have to signup, no problems right? Okay user deletes his.her account on SMF, game = screwed and visa versa, lol. Im not going into details here but having them work together would not work unless you did alot of editing to the SMF registration setup and cut out the deleting accounts etc. If users want to talk in the forums, they wil sign up, its simple and easy. Quote
bocco Posted December 10, 2008 Author Posted December 10, 2008 Re: Updated forums [mccodes v2] well that comes with a HUGE problem one of my staffs name is (lets call him) darock and someone thinks it would be funny to make a username called darock before a staff does then that person can cause some trouble, YES i know you then can jail them for being a tool but why do we have to monitor even more stuff. Quote
ShizzleNizzle Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] That is not a HUGE problem at all. Just check the IP adress of your staff member and the other account. Okay user deletes his.her account on SMF, game = screwed and visa versa Now that's a problem you dont want to have Quote
bocco Posted December 10, 2008 Author Posted December 10, 2008 Re: Updated forums [mccodes v2] first thanks Solid Snake for the credit; second he is right you guys complain about the forums being broken, so i post an easy fix for them. Then you complain that the forums are not secure, which they have never really been. now about the SMF issue yes i suppose you are correct. Also this guy that i am in talks will can do a forum that operates like SMF, but that comes with a cost:( and i am not willing to spend the 200 bucks on that Quote
radio_active Posted December 10, 2008 Posted December 10, 2008 Re: Updated forums [mccodes v2] I had the fix, if not even better. My site was hacked through it, they left. You provided a fix which has been provided for about 100 times in the help section, lol. But yeah whatever floats your boat. Quote
chaoswar4u Posted December 21, 2008 Posted December 21, 2008 Re: Updated forums [mccodes v2] Hehehe the forums are secure if you are using $_GET['ID'] = abs(@intval($_GET['ID'])); $_GET['viewforum'] = abs(@intval($_GET['viewforum'])); $_GET['viewtopic'] = abs(@intval($_GET['viewtopic'])); in your header Completely secure with that, absolutely NO WAY that ANYWAY could hack into those brilliant forums that were coded so securely. As long as you have that. :lol: Duuuudeeeee you are soo incorrect, lol! The most secure files may be 99% secure, but there is always the 1% chance or so. Thats why banks employ "Programmers" to attempt to hack into there online sites and if they find a whole they patch it. And i assure you, the code used to make those online banking sites is x10000 more secure then any MCcode file. Just so we have that clear xD So the reply.php isnt required to be secured then???? I would rethink and secure against that risk. Quote
radio_active Posted December 21, 2008 Posted December 21, 2008 Re: Updated forums [mccodes v2] What are you talking about? "Completely secure with that, absolutely NO WAY that ANYWAY could hack into those brilliant forums that were coded so securely. As long as you have that. :lol:" That was completely sarcastic, just so that is clear. Quote
Eternal Posted December 21, 2008 Posted December 21, 2008 Re: Updated forums [mccodes v2] What are you talking about? "Completely secure with that, absolutely NO WAY that ANYWAY could hack into those brilliant forums that were coded so securely. As long as you have that. :lol:" That was completely sarcastic, just so that is clear. Lmao they Expect People to do everything for them.... I am sure you can modify a BB Forum into a mccodes game Incuding re-writing a few php files in the forum to make it use the current headers You have here in mccodes... Also banks : they pay people to hack the banks That is why it is so secure there has been billions of patches made to protect almost every type of injection/brute/or connection of any form... Quote
Savager Posted December 22, 2008 Posted December 22, 2008 Re: [mccode v2] Updated forums I created a forum about a month ago, took a while to complete. added sprintf() and all that secure jazz and havent had a problem with it yet. plus added a few other things to make it more interesting. works great and looks great. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.