81
xgarb
Re: Site hacked
  • 2008/1/16 21:44

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


Quote:

MSGDogs wrote:
Thanks for that
If i remove the write permissions from the following will it casue me any problems

uploads
templates_c
cache

Also are there any others that i should be concerned with
Thanks in advance


Think they all need to be write enabled. Check with your host exactly what CHMOD number to give them, it's not always 777.

This might be of use..https://xoops.org/modules/newbb/viewtopic.php?topic_id=59194&viewmode=flat&order=ASC&type=&mode=0&start=0



82
xgarb
Image Manager improvements
  • 2007/10/28 10:54

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


Can someone point me in the right direction on where/who to ask about improving the image manager in the core?

The current image manager is a bit clunky so..

I think there should be an 'My Images' link somewhere in the account/profile which leads to a simple image management page that a member can use to upload, delete and generally manage their own images. These can then be used on the site via an improved image manager pop up screen where the member can only see their own images.

I think there are a few open source forums that have this already so there'll be some code to use. I'm not the greatest PHP developer but am pretty good with user interfaces so would be happy to create some mock ups of how this could work.

Do I need to contact someone on the sourceforge site for this?



83
xgarb
Re: Got error 134 from storage engine
  • 2007/7/21 13:38

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


so now the question is.. will my site slow down if I remove topic_id from the topicid_uid key?



topicid_uid INDEX 49965 topic_id uid

topicid_postid_pid INDEX 99930 topic_id post_id pid



84
xgarb
Re: Got error 134 from storage engine
  • 2007/7/21 13:34

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


ok, found some more info Quote:
Consider column cardinality. The cardinality of a column is the number of distinct values that it contains. For example, a column that contains the values 1, 3, 7, 4, 7, and 3 has a cardinality of four. Indexes work best for columns that have a high cardinality relative to the number of rows in the table (that is, columns that have many unique values and few duplicates). If a column contains many different age values, an index will differentiate rows readily. An index will not help for a column that is used to record sex and contains only the two values 'M' and 'F'. If the values occur about equally, you'll get about half of the rows whichever value you search for.
from..http://www.informit.com/articles/article.asp?p=377652&rl=1

so basically look for the keys with the lowest cardinality value and remove those.



85
xgarb
Re: Got error 134 from storage engine
  • 2007/7/21 13:28

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


I don't really get this either.

CBB installer has

KEY `uid` (`uid`),
  
KEY `pid` (`pid`),
  
KEY `forum_id` (`forum_id`),
  
KEY `topic_id` (`topic_id`),
  
KEY `subject` (`subject`(40)),
  
KEY `forumid_uid` (`forum_id`,`uid`),
  
KEY `topicid_uid` (`topic_id`,`uid`),
  
KEY `post_time` (`post_time`),
  
KEY `topicid_postid_pid` (`topic_id`,`post_id`,`pid`),


for bb_posts table.

But phpMyadmin/mysql complains about..

More than one INDEX key was created for column `forum_id`
More than one INDEX key was created for column `topic_id`

I found this article that explains indexeshttp://www.databasejournal.com/features/mysql/article.php/1382791 (basically an index is literally that.. it speeds up queries) but which index is best to delete in the bb_posts table?



86
xgarb
Re: How Can I Change The Rank Images...
  • 2007/7/8 16:59

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


your image is probably to big.

Edit the hardcoded values '120', to allow the size of image you're trying to upload, at the end of ..

$uploader = new XoopsMediaUploader(XOOPS_UPLOAD_PATH, array('image/gif', 'image/jpeg', 'image/pjpeg', 'image/x-png'), 100000, 120, 120);


on lines 89 and 122 of modules/system/admin/userrank/main.php



87
xgarb
Re: Call for a community action on Xoops Project Council
  • 2007/7/8 12:17

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


blah blah, whinge whinge..

Poor bloke (dj) raised his head to try and move XOOPS forward and every move is dogged by why isn't he doing this, why has he done that.

At least he is doing something.

You might not agree with everything he's doing but just let him get on with it and work with him for a better XOOPS.

If you think you can help, then help.. your efforts might go unrewarded but at least you can feel like you did something for the good of the project.

Like someone mentioned.. this is a software project, not a concept for a new world order. If something is missing or wrong with the plan it can always be changed later but all this bickering just drains people's time from us moving forward.



88
xgarb
Re: ImageMagicK not getting detected
  • 2007/7/1 11:26

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


I'm on CBB 3.0.8 and have ImageMagick installed in /usr/bin


The index page of CBB doesn't show ImageMagick as detected unless you actually select it as the 'Image library to use' in your preferences.



89
xgarb
Re: Open holes and hacked
  • 2007/6/14 19:32

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


my understanding is any file type in the list..

AddHandler cgi-script .php .pl .py .jsp .asp .htm .shtml .sh .cgi

is assigned to CGI

and this bit

Options -ExecCGI

stops any CGI (and everything assigned) from executing.

It works for me as mentioned previously. Here's the link again for people who like reading..http://www.askapache.com/htaccess/security-with-apache-htaccess.html#show-source-code


Dave_L,

Maybe there should be server specific versions of xoops.. ie a hardened version for Apache.. or maybe the installer could check server environment and adjust accordingly?



90
xgarb
Re: Open holes and hacked
  • 2007/6/4 7:41

  • xgarb

  • Not too shy to talk

  • Posts: 154

  • Since: 2003/3/30


stops any executable files (the ones listed) by assigning them to CGI and then stopping CGI from working...

sort of anyway!

It works for me when tested.




TopTop
« 1 ... 6 7 8 (9) 10 11 12 ... 14 »



Login

Who's Online

247 user(s) are online (152 user(s) are browsing Support Forums)


Members: 0


Guests: 247


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Mar 31
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits