Subscribe to Grim's Projects        RSS Feed
-----

Help Debug GrimBB

Icon 2 Comments
Alright if you wanna see the forum in action please navigate to GrimBB Demo. The categories, titles, and descriptions are irrelevant. The data there was borrowed from one of the demos of the phpBB board simply because I needed some data to fill up the portal page and that data fit well.

What I ask of you?

Basically, register a nick and go crazy posting topics/replies even if they're nonsensical. I want people to expose flaws in the code and/or error checking/handling. If you do happen to make it crash/malfunction/hack/exploit/whatever post how you achieved it there on the forum somewhere or here at this blog. I'll see if I can find a way to fix the damage (if worst comes to worst, I can just reupload the whole forum in a matter of seconds hehe).

If you're worried about registration, don't be. Your username and password will be stored in the file called board_users.inc. If you open it up you'll be able to see three arrays: $user, $pass, and $logDate. The array that contains all the strange letters and numerics are actually the md5 encodings of your password. So unless you've got some serious computing time don't worry about someone jacking your password.

EDIT: BE SURE TO READ THE SECURITY FLAW EXPOSED! POST BEFORE REGISTERING FOR GRIMBB!

2 Comments On This Entry

Page 1 of 1

snoj 

08 November 2006 - 08:52 PM
Passwords aren't needed if cookies are being used.

What a time to have deleted my blog here with all that good info on it about passwords and security. :(
0

grimpirate 

08 November 2006 - 10:18 PM

hotsnoj, on 8 Nov, 2006 - 08:52 PM, said:

Passwords aren't needed if cookies are being used.

Hmm... the password is only needed for logging in, the session takes care of the rest. Granted when the person returns he/she will have to log in again, but I usually do that anyhow. I don't like using the Remember Me feature of the forums.
0
Page 1 of 1