13
It is better to work on content. Less security problems with data. Developers can code new authentication layer to verify XOOPS access and improve security but it is one more patch to core. It is not good solution for XOOPS 2 core.
Good Luck.
Good Luck.
14
Important security issue with XOOPS 2.0.16 if you suppose admin connect, configuration has a limited time predefined, then one can get data if limited time not expired because there is not a layer security authentication's method on XOOPS 2.0.16
Yes. you can get users password, not usual process but with minimum creativity. It is one important problem to make one choose the layout content possibility and make a new render system instead work directly on data of XOOPS 2.0.16
Good Luck.
Yes. you can get users password, not usual process but with minimum creativity. It is one important problem to make one choose the layout content possibility and make a new render system instead work directly on data of XOOPS 2.0.16
Good Luck.
15
Quote:
Visit the following forum:
http://xoopscube.org/modules/xhnewbb/viewforum.php?forum=9
And search "postload". You will found how to operate on content instead data. It is exactly what you need. It is incredible solution for XOOPS users which are stuck with last release.
Good Luck.
With this CubeLet System,
You can display any contents at any place!! Whatever!!Wherever!!
For example,
you can display online-status block in your comment!
(To do so,just make the CubLet which diplays online-status!)
and..
you can display Recent 10 post of forum in your PM!
(^^..Just make a cublet for it!)
and even...
if you wish to,you can implement Site-administration in your post at newbb.
(But it's not good idea!
Abuse of CubeLet can make your site very slow and even spoil your site!!
...^^;;
Visit the following forum:
http://xoopscube.org/modules/xhnewbb/viewforum.php?forum=9
And search "postload". You will found how to operate on content instead data. It is exactly what you need. It is incredible solution for XOOPS users which are stuck with last release.
Good Luck.
16
Hello farshid,
You have found many issues with this method. XOOPS authentication's not secure.
If it interacts with data without security this will create more vulnerabilities.
Visit the following forum:
http://xoopscube.org/modules/xhnewbb/viewforum.php?forum=9
And search "postload". You will find how to operate on content instead data.
It is exactly what you need to release a new render system ajax with smarty and a litle more secure.
Good Luck.
You have found many issues with this method. XOOPS authentication's not secure.
If it interacts with data without security this will create more vulnerabilities.
Visit the following forum:
http://xoopscube.org/modules/xhnewbb/viewforum.php?forum=9
And search "postload". You will find how to operate on content instead data.
It is exactly what you need to release a new render system ajax with smarty and a litle more secure.
Good Luck.
17
Your reply is representative of your ego and immaturity, it is normal, you are young. My son is high as me 1.90 m and he is 15. And he think he can act and decide by himself as a mature man. I try to explain to him to respect everybody, big and small people and respect mature persons because experience his very important. Do you think young people listen to old man? I take time to read your reply, many contradictions, it is normal without experience. You are not a developer, are you? XOOPS requires an environment to run it is one reason to develop and evolve. Second, Mr. Morris also said Quote: He is part of XOOPS team, please ask him. Maybe he can teach you for free. Quote:
But you want me to do it free. But there no core or developers documentation? You are not a developer and you are not an expert of open source licenses, are you?
Mr. Skalpa is alone and no one helps him. But we can read in your signature you are project manager and on other post you are alone with XOOPS Foundation (maybe it is illegal) but you can take important decisions about the project. You can ask with respect members to join you and help with management. Your position allow you to use financial resources to improve the project and help core development.
Maybe you do not feel secure about your competences to take such decisions. Discuss with other members about decisions and share responsibilities. Sorry about your ego, if you are small, you are as your mom and dad made you with love. It is the most important. Wish you find competences around you to help you grow and xoops. I have other family and tasks priorities. Mr. Morris can teach you, he give good support.
Good Luck.
It would take me 1 line of PHP code to bring a server to it's knees using XOOPS, or any other program that allows PHP execution for that matter.
If professionals work on an open source project, shouldn't they get paid? What about businesses who provide value added services based on open source products? Are they wrong? No, they're not. There's no reason whatsoever that open source cannot be paid jobs.
But you want me to do it free. But there no core or developers documentation? You are not a developer and you are not an expert of open source licenses, are you?
Mr. Skalpa is alone and no one helps him. But we can read in your signature you are project manager and on other post you are alone with XOOPS Foundation (maybe it is illegal) but you can take important decisions about the project. You can ask with respect members to join you and help with management. Your position allow you to use financial resources to improve the project and help core development.
Maybe you do not feel secure about your competences to take such decisions. Discuss with other members about decisions and share responsibilities. Sorry about your ego, if you are small, you are as your mom and dad made you with love. It is the most important. Wish you find competences around you to help you grow and xoops. I have other family and tasks priorities. Mr. Morris can teach you, he give good support.
Good Luck.
18
Quote:
Me too. No developers, new core, no documentation. Sorry, if machine translation hurts you. I was not my intention to wound your ego or blame your efforts.
My young son start to use XOOPS with friends for a personal project at school and ask me to help. I thought there was mature people managing this project. But your words let me understand it is not a place to old man like me. But I am happy old man. No developer contact me for security question. Do not worry. You can think it is stable if you compare to situation 2 years ago. But last time you say it was secure, Mr. Gijoe post with your account (find on the XOOPS forums).
Why you think developers of php and MySQL still release new versions? You understand technologies evolves and software evolution is a reason for XOOPS security problems. XOOPS is good for people without skills or time to learn to build simple and small site. But it is important developers think of new code for future.
Good Luck.
So far, we haven't seen much that's worth a lot...
Me too. No developers, new core, no documentation. Sorry, if machine translation hurts you. I was not my intention to wound your ego or blame your efforts.
My young son start to use XOOPS with friends for a personal project at school and ask me to help. I thought there was mature people managing this project. But your words let me understand it is not a place to old man like me. But I am happy old man. No developer contact me for security question. Do not worry. You can think it is stable if you compare to situation 2 years ago. But last time you say it was secure, Mr. Gijoe post with your account (find on the XOOPS forums).
Why you think developers of php and MySQL still release new versions? You understand technologies evolves and software evolution is a reason for XOOPS security problems. XOOPS is good for people without skills or time to learn to build simple and small site. But it is important developers think of new code for future.
Good Luck.
19
Quote:
This is good question. I did not found developers working on a new core or documentation. But i check permissions and i see most team members banned. You say it is stable but the true it is not secure. And because there is not new code, developers and users can not contribute, work on improvements, test or report bugs.
Sorry, i did not know the project team expects to be paid or other incentives. Usual open source it is not a paid-job?
The project is sick, i can understand you do not have a developer to code a new core. I can only help users on java scripts for free. But i can not help you to find core developers. Maybe you can pay with adds revenues? I have no solution to your problem. Sorry.
I quote here a fun team with great humor. Smile is good when problem is important.
"We Do Technology
Does your PHP network have double back-end XHTML redundancy? Is your PDA hard drive triple access enabled for Wi-Fi management? If you don't have end-point security in your adaptive architecture strategy, then you need us.
You might not even know if you need us. Which means you need us even more. You don't understand how much you need us because you're not as smart as us. You don't understand things like Continuous Network Access Compliance Upload Speed (even though you pretend like you do at parties when people talk about it). You don't understand these things because you're not smart. But that's OK. We're smart. You can trust us.
If you hire us, you'll never see us in person. We might respond to your emails from time-to-time, but usually not. It's not that we're too busy to talk to you, it's just that your emails are usually so stupid that we're too busy laughing about them with everyone in the office.
Contact Us today. Do something smart for a change."
http://www.duhcorp.com/
Good Luck.
Then who creates XOOPS? Who writes the new codes, who tests new codes, who writes developer documentation, who creates the new architecture, who creates the roadmaps, who writes the classes, who backports the code to earlier versions? All in their free time, in their own time, without pay or -as stated in my earlier post- other incentives?
This is good question. I did not found developers working on a new core or documentation. But i check permissions and i see most team members banned. You say it is stable but the true it is not secure. And because there is not new code, developers and users can not contribute, work on improvements, test or report bugs.
Sorry, i did not know the project team expects to be paid or other incentives. Usual open source it is not a paid-job?
The project is sick, i can understand you do not have a developer to code a new core. I can only help users on java scripts for free. But i can not help you to find core developers. Maybe you can pay with adds revenues? I have no solution to your problem. Sorry.
I quote here a fun team with great humor. Smile is good when problem is important.
"We Do Technology
Does your PHP network have double back-end XHTML redundancy? Is your PDA hard drive triple access enabled for Wi-Fi management? If you don't have end-point security in your adaptive architecture strategy, then you need us.
You might not even know if you need us. Which means you need us even more. You don't understand how much you need us because you're not as smart as us. You don't understand things like Continuous Network Access Compliance Upload Speed (even though you pretend like you do at parties when people talk about it). You don't understand these things because you're not smart. But that's OK. We're smart. You can trust us.
If you hire us, you'll never see us in person. We might respond to your emails from time-to-time, but usually not. It's not that we're too busy to talk to you, it's just that your emails are usually so stupid that we're too busy laughing about them with everyone in the office.
Contact Us today. Do something smart for a change."
http://www.duhcorp.com/
Good Luck.
20
Each time a XOOPS user, or developer ask about XOOPS development, the managers team say it is community fault. But the users are not developers.
And developers without news about development or core developers documentation can not do contribution. Where is the new XOOPS with documentation to contributors work on improvements!?
This is very bad situation!
And developers without news about development or core developers documentation can not do contribution. Where is the new XOOPS with documentation to contributors work on improvements!?
This is very bad situation!
Login
Search
Recent Posts
Who's Online
Donat-O-Meter
| Stats | |
| Goal: | $100.00 |
| Due Date: | May 31 |
| Gross Amount: | $0.00 |
| Net Balance: | $0.00 |
| Left to go: | $100.00 |
 |
|