| Security Changes | by lmbedore |
| Perl CGIs may no longer use Socket.pm. Eventually we will remove similar functionality from PHP as well. Though it should go without saying, don't upload your own copy of Socket.pm - that'll get your account deleted. Socket.pm or any replacement of it may no longer be used.
Thank the assholes who abuse our service to launch DoS attacks against others for getting this very useful tool removed. | |
| Re: Security Changes | by ykk |
| Whats socket.pm? Is it something that adds sockets support? Geez. Who are those idiots? | |
| Re: Security Changes | by jamm |
| ahhh dang there goes ikonboard. | |
| Re: Security Changes | by mtpowell |
| There goes my YaBB too :( | |
| Re: Security Changes | by lmbedore |
For yabb, if you go into the cgi-bin/yabb/Sources/Subs.pl and change line 390 from:
if $mailtype==1 ( use Socket;) to: if $mailtype==1 ()yaBB should work again. Of course, sending mail from CGI still won't work, since we have disabled THAT due to abuse as well. We do plan on bringing email from CGI back again, after we get the new servers running the show. | |
| Re: Security Changes | by r3chn3r |
| Bummer. No-more feedback form. At this rate, mysql services will be as usefull as marijuana being legalized after my lifetime. | |
| Re: Security Changes | by sirius crackhoe |
| Tough shit... too many fucking 14 year old wanna be hackers out there. | |
| Re: Security Changes | by toby |
| If only I was 14 again.. | |
| Re: Security Changes | by lmbedore |
| i doubt we'll ever serve mysql to people, simply because we don't like mysql. Postgres, perhaps. SAP DB, perhaps... but mysql's pretty much out of the question unless they fix some pretty serious stuff in their application. | |
| Re: Security Changes | by Sire |
| Is there a way to get ikonboard to work without socket.pm? Cause thats what I was using until socket.pm got banned. I don't really wanna get kicked off here so if anyone knows how to make ikonboard work without pissing off vectorstar guys thatd be nice. | |
| Re: Security Changes | by Sire |
| I'm gunna try put a yabb board on and then edit it. If it uploads it won't upload a version of socket.pm with it will it? If so I will immediatly delete it and I will definitely do the editing thing that you showed up top. I don't want to lose my account here so I'm gunna try do this without going against the socket.pm rule. If there's anything I should know, please tell me. Thanks. | |
| Update - YaBB | by wanderer |
| The password reminder won't work without the socket implementation too. So your users won't be able to retrieve lost passwords. About line 169 in LogInLogOut.pl (YaBB Gold V1.1 SP1) -------------------- <table border=0 align="center"> <tr> <td><font size="2">$txt{'35'}: <input type="text" name="user"> <input type="submit" value="$txt{'339'}"></font></td> </tr> </table> -------------------- Replace it with a suitable message (remember to escape any '@' symbols) or a message telling them to email you or something to retrieve a lost password. | |
| Re: Security Changes | by Anonymous |
| The password reminder won't work without the socket implementation too. So your users won't be able to retrieve lost passwords. About line 169 in LogInLogOut.pl (YaBB Gold V1.1 SP1) -------------------- <table border=0 align="center"> <tr> <td><font size="2">$txt{'35'}: <input type="text" name="user"> <input type="submit" value="$txt{'339'}"></font></td> </tr> </table> -------------------- Replace it with a suitable message (remember to escape any '@' symbols) or a message telling them to email you or something to retrieve a lost password. | |