New GDPR (General Data Protection Regulation) and phpBB

Do not post support requests, bug reports or feature requests. Discuss phpBB here. Non-phpBB related discussion goes in General Discussion!
Get Involved
User avatar
david63
Registered User
Posts: 18437
Joined: Thu Dec 19, 2002 8:08 am
Location: Lancashire, UK
Contact:

Re: New GDPR (General Data Protection Regulation) and phpBB

Post by david63 »

heinrich_k wrote:
Sat Feb 01, 2020 1:57 pm
Prospective board owners aren't lawyers, or IT specialists, security experts or web designers for that matter.
Then if they are that concerned then they should seek advice from those professionals or not install the software.

You cannot abdicate your responsibility for complying with the local laws appertaining to running a website (be it phpBB or not) to the software provider(s).

Do you check on the operating system(s) the programming language(s) and everything else that is required to make a website work?
heinrich_k wrote:
Sat Feb 01, 2020 1:57 pm
If one is to install a board software like phpBB, one can reasonably expect that it is reasonably up-to-date on current security and and programming practices. And the community that creates the software should probably have an interest in providing a reasonably safe and secure software, too.
That has nothing to do with Privacy - and phpBB is up to date with security which is taken seriously.

Before installing software on a server do you check that the server is secure and not going to leak your data?
David
Remember: You only know what you know and - you don't know what you don't know!
My CDB Contributions | How to install an extension
I will not be accepting translations for any of my extensions in Github - please post any translations in the appropriate topic.
No support requests via PM or email as they will be ignored
User avatar
2600
I've Been Banned!
Posts: 2567
Joined: Fri Nov 14, 2014 5:14 pm
Location: Area-51

Re: New GDPR (General Data Protection Regulation) and phpBB

Post by 2600 »

david63 wrote:
Sat Feb 01, 2020 1:17 pm
For all those who claim that an IP address is vital personal data please tell me what you can find out about me from my current IP address which is xxx.xxx.91.15
Give me about 45 minutes and I'll Nmap it for any open ports that can be pried open.

That's the scenario from a hacker preservative. If you have a vulnerable router it can and will be turned into a zombie bot net, and I've seen my fair share of bot net zombie residential routers from legit ISPs try to connect to my website's.

Best not share your IP to the public if at all possible unless you are connecting to legit websites and can trust their server security.

Do IPs connect one to their home address and all that crap? No, not to the average Joe. But to a law enforcement agency they can subpoena the ISP with that IP and get your address.

But I'll one up you. Here's my IP address. 198.10.15.28 :lol:



enter a valid email wrote:
Sat Feb 01, 2020 1:04 pm
Nope here your IP will be the same even you restart the Router, Gateway,..
Wrong! I can change my WAN IP at any time and have done that many, many times. All you do use use the MAC address clone feature, change the last part of the MAC address and reboot the modem, not the router. Presto, you now have a new IP. That's if your ISP allows this or at least works this way.




david63 wrote:
Sat Feb 01, 2020 2:23 pm
KYPREO wrote:
Sat Feb 01, 2020 1:50 pm
you were born in 1963
Wrong
enter a valid email wrote:
Sat Feb 01, 2020 1:59 pm
Your Skype Account is: david.wood63
Your Phone No is maybe: 01795521581
And Mobile: 07742612411

You might Visit the Church of Saint Peter and St Paul.

You had a problem with XP Home and maybe Married to Sheila Wood.
All but one are wrong

Skype resolvers... the little kids love 'em...
Morpheus: Unfortunately, no one can be told what The Matrix is. You'll have to see it for yourself.
Hack me.
Consider a canary token.
The nature of my chosen username
:ugeek:
enter a valid email
Registered User
Posts: 322
Joined: Mon May 30, 2016 4:50 pm
Location: VIE
Contact:

Re: New GDPR (General Data Protection Regulation) and phpBB

Post by enter a valid email »

Wrong! I can change my WAN IP at any time and have done that many, many times. All you do use use the MAC address clone feature, change the last part of the MAC address and reboot the modem, not the router. Presto, you now have a new IP. That's if your ISP allows this or at least works this way.
Thats why I got the same WAN IP Adress from my ISP when I connect my Laptop to the Gateway. :lol:
And NO we dont pay for the (quite) fix IP Address.
heinrich_k
Registered User
Posts: 221
Joined: Fri Jul 17, 2009 11:40 am

Re: New GDPR (General Data Protection Regulation) and phpBB

Post by heinrich_k »

John connor wrote:
Sat Feb 01, 2020 2:32 pm
Wrong! I can change my WAN IP at any time and have done that many, many times. All you do use use the MAC address clone feature, change the last part of the MAC address and reboot the modem, not the router. Presto, you now have a new IP. That's if your ISP allows this or at least works this way.
Most people can't. Wouldn't know how or why. Those are the people who one should have in mind, when designing software like phpBB.
heinrich_k
Registered User
Posts: 221
Joined: Fri Jul 17, 2009 11:40 am

Re: New GDPR (General Data Protection Regulation) and phpBB

Post by heinrich_k »

david63 wrote:
Sat Feb 01, 2020 2:33 pm
Do you check on the operating system(s) the programming language(s) and everything else that is required to make a website work?
Occasionally.
I also install security fixes and updates.
david63 wrote:
Sat Feb 01, 2020 2:33 pm
heinrich_k wrote:
Sat Feb 01, 2020 1:57 pm
If one is to install a board software like phpBB, one can reasonably expect that it is reasonably up-to-date on current security and and programming practices. And the community that creates the software should probably have an interest in providing a reasonably safe and secure software, too.
That has nothing to do with Privacy - and phpBB is up to date with security which is taken seriously.
Privacy and security are overlapping topics, according to wikipedia.
Not to store any unnecessary data is a valid method to make sure this data is not stolen from the software.
Last edited by heinrich_k on Sun Feb 02, 2020 1:18 am, edited 1 time in total.
User avatar
tojag
Registered User
Posts: 408
Joined: Thu Aug 07, 2014 8:00 am
Location: Warsaw, Poland, EU
Name: Gregory

Re: New GDPR (General Data Protection Regulation) and phpBB

Post by tojag »

david63 wrote:
Sat Feb 01, 2020 8:43 am
I reiterate the point - it is the board owner's responsibility and if a particular software package does not meet their requirements then do not use it and find one that does. It really is that simple.
Yes, it is true! But I and the others wants to use phpBB as a good board software and we would to have it comply with law like GDPR.
Why are you writing about coopa? it's purely US law, and yet it's built into phpbb. Users from Europe would like to have the same in relation to GDPR. Built-in GDPR compliance mechanisms. I think that not only the owners of forums from Europe would benefit from these facilities, but also others because the right to personal data protection is not something fictitious. In the digital world today, it should be a universal law for everyone around the world. Although I do not support the EU on many issues, this one is very good.
heinrich_k
Registered User
Posts: 221
Joined: Fri Jul 17, 2009 11:40 am

Re: New GDPR (General Data Protection Regulation) and phpBB

Post by heinrich_k »

'Good'?
'Very good', even?
Nah, but I'd agree on 'good intended' ;)


In any case, I 'd guess, one caters to a more professional image if one takes privacy concerns seriously.
I, for one, can't see any reason why the IP of the user who triggered the deletion of inactive threats is logged. The fact that the trigger happened should be enough info.
Post Reply

Return to “phpBB Discussion”