The 'Optional bday' mod would be good as well - I suspect most forums don't need mandatory birthdates.
I want that in 2.6.2
Posted by: Dandello Posted on: Sep 12th, 2014 at 3:46pm
Back on topic - I think Carsten's Ex-Member Mod would be a good addition to 2.6.2.
I have an updated version of it but still haven't heard back from Carsten as to whether or not we have permission to update/distribute his mods. (His copyright info explicitly states that written permission is required.)
I think maybe possibly this one could also be modified to save things like member vars and other ancillary member files so the member could be reinstated if necessary.
The 'Optional bday' mod would be good as well - I suspect most forums don't need mandatory birthdates.
Posted by: Monni Posted on: Sep 7th, 2014 at 8:19am
They forget that I can understand 13 different languages... No matter what encoding they use for hidden messages, I can decrypt them... lol
...They ran through the briars and they ran through the brambles and they ran through the bushes where a rabbit couldn't go. They ran so fast that the hounds couldn't catch 'em...
(It's from an American folk song... )
Posted by: Monni Posted on: Sep 6th, 2014 at 9:44pm
I'm out to get them... Just like when write Mandarin Chinese with some of my friends who are too lazy to keep in touch with me... One sure way to get their attention...
Posted by: Dandello Posted on: Sep 6th, 2014 at 9:26pm
Is it paranoia when they really are out to get you?
Posted by: Monni Posted on: Sep 6th, 2014 at 9:15pm
Maybe it's just me following too closely the error logs for forum of one of my clients, but I've noticed several cracking attempts per day... So far all have failed, but they're clearly collecting valid file name and path patterns so they can find vulnerable software. I've added stub error pages in Apache so that minimal information is returned on failed requests.
Posted by: Dandello Posted on: Sep 6th, 2014 at 9:09pm
Made the changes and uploaded it here for testing. I have no idea why those error calls were changed since obviously we don't want to give the crackers any more information than we absolutely have to.
Posted by: Monni Posted on: Sep 6th, 2014 at 8:51pm
Posted by: Dandello Posted on: Sep 6th, 2014 at 8:43pm
Good idea.
Posted by: Monni Posted on: Sep 6th, 2014 at 8:30pm
As error "not_found" is shown for guests, I think it would be best to split as "no_topic_found" and "no_board_found", so we wouldn't need to display paths to the files or file names to guests... This makes it harder for crackers to inject malicious files using vulnerabilities on other software installed on same user account.
The messages actually already exist in my language files...