phpBB • Free and Open Source Forum Software

david63 wrote: ↑

Sat Feb 01, 2020 9:22 am

And that is exactly what my Privacy Policy extension does.

So, there is a template to move the functionality into core, then

Why? It is not a privacy issue. If you allow, for example, [img]-Tags to outside sources for anyone, what's stopping a user to implement [img]https://domain.tld/analyse.dll?id=1234{/img] and thereby spying on any other user who's browser displays said post. There is no save guard against that, if a...

'Good'? 'Very good', even? Nah, but I'd agree on 'good intended' ;) In any case, I 'd guess, one caters to a more professional image if one takes privacy concerns seriously. I, for one, can't see any reason why the IP of the user who triggered the deletion of inactive threats is logged. The fact tha...

it is pretty much what the document page says: define('IN_PHPBB', true); define('PHPBB_ROOT_PATH', '<relative path to phpBB>'); $phpbb_root_path = (defined('PHPBB_ROOT_PATH')) ? PHPBB_ROOT_PATH : './'; $phpEx = substr(strrchr(__FILE__, '.'), 1); include($phpbb_root_path . 'common.' . $phpEx); // Sta...

I rewrote my script with this documentation:
https://www.phpbb.com/support/docs/en/3 ... ntegration

Now it works fine, again.

Do you check on the operating system(s) the programming language(s) and everything else that is required to make a website work? Occasionally. I also install security fixes and updates. If one is to install a board software like phpBB, one can reasonably expect that it is reasonably up-to-date on c...

Wrong! I can change my WAN IP at any time and have done that many, many times. All you do use use the MAC address clone feature, change the last part of the MAC address and reboot the modem, not the router. Presto, you now have a new IP. That's if your ISP allows this or at least works this way. Mo...

I reiterate the point - it is the board owner's responsibility and if a particular software package does not meet their requirements then do not use it and find one that does. It really is that simple. No, it is not. Prospective board owners aren't lawyers, or IT specialists, security experts or we...

It would be neat if there was an option that would change all bbcode-tags that reference to an outside ressource, like img-tag in a way, so that the file in question is loaded by proxying through the board. Why? Well, currently, one could add code like this: [img]http://domain.tld/pic.jpg[/img] to g...

<t>There should be a phrase that reads like this<br/> "The board my request that your browser loads ressources from third party sources. This inclued, but is not likited to, fonts, images, java-scripts."<br/> <br/> This phrase should be added either by default, or by option. Prefferably if any exten...

<t>With privacy legislation, GDPR and such it might be necessary to adjust the standard texts that come with phpBB for any separate board. Therefor it is less than ideal, that these long texts are part of the language-pac-ucp.php-file. Between 3.2.9 and 3.3.0 there were several changes to the file, ...

The bottom line here is that it is the board owner who is responsible for complying with the law that appertains to the country that they are in and/or operate in. Yet, any software offered to board owners, like phpBB, should provide the means to do so, or else the offering is only worth as much as...

okay, from phpbb_users I get a user_password string that begins with argon2id so I added the drivers for argon2id to my file.

But still the validation doesn't work.

Yes, I read that, too. Thought this would only be new hash options, but that the old ones would still function. But apparently I'm not too familiar, with how the login process works... Her is my code that worked before phpBB 3.3 function check_phpBB_password($username, $supplied_password) { $return ...

Yes, it is vage. I programmed a function myself, for a web app that only I use (for my club). But the old mediawiki extension, that integrated phpBB users into mediawiki and allowed them to log in also doesn't work anymore. There I get a "deprecation" error for the crypt function, due to a switch to...