> PHPBB not only has had a terrible security track record
Run the numbers. phpBB's record is no worse than punBB's, and punBB is often one of the forums heralded by would-be internet experts as a secure phpBB replacement.
> but when you find significant security flaws (I have) they don't even want to hear about them.
What significant security flaw have you found that phpBB don't want to hear about?
> But they are far, far from proactive about heading off new ones.
phpBB 2 had a security audit resulting in the 2.0.18 release. Since then there have been 7 Secunia advisories, all of which were issued in 2006. Two of these required you to be an administrator. One was Internet Explorer only, and a further 3 were passive (XSS and CSRF from malicious links).
phpBB 3 is genuinely designed with security in mind and will undergo a full audit before release. Yeah, they said phpBB 2 was designed with security in mind, too, but that was coming off the back of phpBB 1 and anything would be security compared to phpBB 1. The main problem is that phpBB 3 has taken so long coming; you won't find many PHP applications of phpBB's popularity and codebase size that have been on maintenance releases only since 2002.
> PHPBB is a main reason the PHP people have asked other groups to stop putting "PHP" in the names of their projects; gives the whole language a bad rep.
oh my goodness something went dreadfully wrong with the newlines there, anyway
i hope you're aware that's a strawman because it's not what i said
the economy wouldn't stop entirely because demand will continue, however science and technology would slow down tremendously which would cause massive recessions and poverty and blah blah obviously this wouldn't affect singing and dancing because what else would there be to do while you're hiding in the basement as riots sweep the nation and slowly dying of tuberculosis
to ignore your strawman, though, IP legislation certainly does restrict research just as pure oxygen will fuck you up pretty bad while pure nitrogen will do the same thing
while protected IP is necessary to stimulate complex innovation, it must be limited to allow complex innovation since if you do something worthwhile it'll probably somehow infringe some crappy patent or whatnot
in the end it comes back to the enduring problem of big corporations owning the media that we rely on to inform us about politics while big corporations are also buying the politicians to entrench their positions, they're fucking us with the candle at both ends and it's totally contrary to the necessity for consumers in a capitalist economy and voters in a democratic country to be well informed
i hope you're aware that's a strawman because it's not what i said
the economy wouldn't stop entirely because demand will continue, however science and technology would slow down tremendously which would cause massive recessions and poverty and blah blah obviously this wouldn't affect singing and dancing because what else would there be to do while you're hiding in the basement as riots sweep the nation and slowly dying of tuberculosis
to ignore your strawman, though, IP legislation certainly does restrict research just as pure oxygen will fuck you up pretty bad while pure nitrogen will do the same thing
while protected IP is necessary to stimulate complex innovation, it must be limited to allow complex innovation since if you do something worthwhile it'll probably somehow infringe some crappy patent or whatnot
in the end it comes back to the enduring problem of big corporations owning the media that we rely on to inform us about politics while big corporations are also buying the politicians to entrench their positions, they're fucking us with the candle at both ends and it's totally contrary to the necessity for consumers in a capitalist economy and voters in a democratic country to be well informed
CSS is for elitists that think they're better than the rest of us because they can design sites that don't work right in the world's most popular browser. Yeah, yeah, blame the browser; it's not microsoft's fault. If you just use normal HTML internet explorer is fine. CSS and XHTML are just a pipedream, and there's no good reason to use them. Seperation of style from content? Yeah, great ideal, but why? Wanna make people able to grab data from your site, make an RSS feed. HTML is about presentation and it always has been.
Slashdot trolling phenomena make up a large subset of the bizarre and complex Slashdot subculture found on the popular Slashdot technology website. They are a mixture of juvenilia, sarcasm, deliberately bad jokes, tasteless nonsense and highly developed and artistic attempts to provoke outraged responses from other forum users, amuse them, or challenge their thinking. Slashdot trolling is a subset and a microcosm of Internet trolling in general.
In addition to trolling, there are a number of recurring, off-topic jokes that are seen on the site. See Slashdot subculture.
There exists a trolling sub-subculture, referred to as Trolltalk, with a complex array of trolling organizations that all exists within the depths of the slashdot comment system.
This is a list of some of the trolls that may be encountered when browsing Slashdot comments. Some of these behaviours are usually considered to be more offensive or insightful than others. On Slashdot, many of these phenomena have become the object of parody.
See List of Slashdot trolls for links to examples in each category.
Table of contents [showhide] 1 Disruptive Trolls 1.1 Crapflooding 1.2 Page widening/lengthening 2 Offensive Trolls 2.1 Shock sites and shock content 2.2 Homosexuality & Racism 2.3 Nationalistic insults 3 Deceptive Trolls 3.1 Article text alteration trolls 3.2 Web vendor referral trolls 3.3 Signature trolls 3.4 Movie spoiler 4 Other Trolls 4.1 First post 4.2 *BSD is dying 4.3 Stephen King is dead 4.4 Hot grits / Natalie Portman 4.5 Reigniting flamewars 4.6 Pancake Eating Ninja Troll 5 Minor Trolls 6 Related articles
Disruptive Trolls
Crapflooding
Crapflooding consists of multiple copies of the same message posted many times with slight variations in order to avoid being filtered. Scripted crapflooding attacks, in which the process of posting is automated, can be very effective. Usually used in conjunction with a crapflood, some trolls write or copy offtopic stories into their comments. Many involve gratuitous and homoerotic sex scenes with the names of Slashdot's editors or other open source celebrities substituted for the characters in the original story. Other stories generally have no set topic and are usually nonsensical and surreal as well as offensive. Some trolls simply post comments that are completely incoherent on any level. Occasionally, trolls may post Base64 encoded images and comments, which appear nonsensical until decoded, whereupon they appear merely offensive (most of the time).
See also lameness filter.
Page widening/lengthening
The original page widening posts were simple messages consisting of one long stream of characters with no spaces. This caused browsers to render a very wide page with horizontal scroll bars, making it nearly impossible to read the comments page. Slashdot began inserting spaces into any long run of characters to prevent this and so began the evolutionary battle between Slashcode and the page widening trolls. Newer and more inventive ways of causing page widening were discovered, with the use of blockquote tags and the "." character to cause extreme widening on Internet Explorer. These methods were also eventually closed off by the Slashdot editors. Improvements in browser software have also closed many of the loopholes used to widen pages.
Offensive Trolls
Shock sites and shock content
A popular technique amongst Slashdot trolls is to post links to "shock sites" in order to annoy and offend other readers by tricking them into following the links. This is often accomplished by posting the link under the guise of being another link to the article or a rebuttal to the article.
A variation on this theme is for a troll to accuse a legitimate link or comment as being a link or reference to a shock site. In some cases this can have the desired effect of a
I just heard some sad news on talk radio -
The last *BSD coder, Natalie Portman was found dead in her Maine home this morning. She was naked and petrified, and covered in hot grits. Police are speculating that she didn't pay her fucking SCO license. I'm sure everyone in the Slashdot community will try and fuck her dead corpse - even if you didn't enjoy her work, there's no denying her contributions to geek fapping. Truly an American icon.
Santorini. I've been there, and I've seen what remains and has been excavated of the (now underground) city. IIRC it was a part of the advanced Minoan civilisation of Crete, which disappeared for no apparent reason. I guess the economic and environmental damage caused by a volcanic event like this could go some way towards an explanation, but I don't really remember the history too well..since I was only about 7 when I went:)
The length of time this takes will vary depending on your Internet connection speed and how often the process is run. Once this has completed you can begin the task of rebuilding the system. The various targets for the 'make' process can be found in the Makefile in the/usr/src directory. Many people choose to run make buildworld followed by make installworld. The buildworld target rebuilds the entire base operating systems (not including installed ports) while the installworld target actually installs everything built by buildworld. I prefer the make world target, which combines the two steps into one. This step takes about 25 minutes on my Xeon system and a couple of hours on my Celeron 400MHz mail/dns/nfs server. Take a peek at the screen every now and then to make sure the process hasn't resulted in any errors.
After you're sure the make process has completed successfully you're ready to build a new kernel. To do this simply type make kernel in the same/usr/src directory. The system will build a new kernel using the configuration file you named in the KERNCONF=KERNELNAME entry in/etc/make.conf.
Seems to me that the kernel is an afterthought to the process.
By your own implicit admission most linux distros have between-version updates tools; yet this is what the article claims they mostly lack.
Unlike most Linux distributions it isn't necessary to wait months for a new version to be released for you to upgrade your system. The cvsup/make world process allows you to update your system at any time.
The article blurb is just a copy/paste of the article intro; it is saying exactly what the article intro says.
Example of usage: "Unlike most Linux distributions it isn't NECESSARY to wait months for a new version to be released for you to upgrade your system"
Second word: USUAL
Example of usage: "Unlike most Linux distributions it isn't USUAL to wait months for a new version to be released for you to upgrade your system"
The mention of Linux is flamebait, and an irrelevant comparison. I judge Linux by the quality of the best*, not the average of all.
Or should we judge BSD while including OpenBSD and its atrocious scalability/hardware support? Perhaps Mac OS X and its cost, case insensitivity and platform specificity? Hell, maybe we should judge the GNU project by how greasy RMS' beard is.
* `Best' is defined herein as debian unstable with judicious usage of../project/experimental and/etc/apt/preferences.
I have never used a linux distribution which lacks a tool for updating software without upgrading to the next official release. Redhat had one, mandrake had one, suse had one..and most importantly, debian has one.
okay, minor lie; linux from scratch had no such tool. on the other hand, linux from scratch had no installer and consisted entirely of a manual explaining how to compile the software.:)
Ah yes; I missed the bit where I said "You are personally totally responsible for someone's death by your use of homophobic language".
Homophobic language is homophobic whatever the intended meaning is; by the way, `homosexual' is not a term commonly considered to be homophobic any more than the word `oscillating'.
I'm not demanding a pound of your flesh; I am stating that there is no legitimate reason to call things gay except in a non-discriminatory sexual context. It doesn't matter at all how you personally interpret the word, unless you only talk to yourself.
You're typing. The good thing about typing on a computer is that you can go back and remove things that you normally say involuntarily. If you can't be bothered to remove homophobic language, you are contributing a small part to the current situation where homosexuals have the highest suicide rate of any group in society (well, any group in society that isn't grouped by mental health, of course).
any mention of a certain bullshit hollywood production with the shittiest scientific basis for a film since the neverending story will result in death. of the poster.
thanks for not getting yourselves killed.
overboard? phpBB stable's template engine is a fairly minimalistic, baseline templating implementation:) nothing near as complex as smarty or others.:)
not ready for use yet, but worth looking
on
PHP Template Engines?
·
· Score: 1, Informative
phpBB 2.2 has a great, fast templating/styling system that's vaguely a hybrid of phpLib and Smarty. Not stable yet, but worth remembering for the future.
Slashdot Mirror
then you, too, must not be familiar with phpnuke
> PHPBB not only has had a terrible security track record
Run the numbers. phpBB's record is no worse than punBB's, and punBB is often one of the forums heralded by would-be internet experts as a secure phpBB replacement.
> but when you find significant security flaws (I have) they don't even want to hear about them.
What significant security flaw have you found that phpBB don't want to hear about?
> But they are far, far from proactive about heading off new ones.
phpBB 2 had a security audit resulting in the 2.0.18 release. Since then there have been 7 Secunia advisories, all of which were issued in 2006. Two of these required you to be an administrator. One was Internet Explorer only, and a further 3 were passive (XSS and CSRF from malicious links).
phpBB 3 is genuinely designed with security in mind and will undergo a full audit before release. Yeah, they said phpBB 2 was designed with security in mind, too, but that was coming off the back of phpBB 1 and anything would be security compared to phpBB 1. The main problem is that phpBB 3 has taken so long coming; you won't find many PHP applications of phpBB's popularity and codebase size that have been on maintenance releases only since 2002.
> PHPBB is a main reason the PHP people have asked other groups to stop putting "PHP" in the names of their projects; gives the whole language a bad rep.
Guess you've never heard of PHPNuke.
oh my goodness something went dreadfully wrong with the newlines there, anyway
i hope you're aware that's a strawman because it's not what i said
the economy wouldn't stop entirely because demand will continue, however science and technology would slow down tremendously which would cause massive recessions and poverty and blah blah obviously this wouldn't affect singing and dancing because what else would there be to do while you're hiding in the basement as riots sweep the nation and slowly dying of tuberculosis
to ignore your strawman, though, IP legislation certainly does restrict research just as pure oxygen will fuck you up pretty bad while pure nitrogen will do the same thing
while protected IP is necessary to stimulate complex innovation, it must be limited to allow complex innovation since if you do something worthwhile it'll probably somehow infringe some crappy patent or whatnot
in the end it comes back to the enduring problem of big corporations owning the media that we rely on to inform us about politics while big corporations are also buying the politicians to entrench their positions, they're fucking us with the candle at both ends and it's totally contrary to the necessity for consumers in a capitalist economy and voters in a democratic country to be well informed
i hope you're aware that's a strawman because it's not what i said the economy wouldn't stop entirely because demand will continue, however science and technology would slow down tremendously which would cause massive recessions and poverty and blah blah obviously this wouldn't affect singing and dancing because what else would there be to do while you're hiding in the basement as riots sweep the nation and slowly dying of tuberculosis to ignore your strawman, though, IP legislation certainly does restrict research just as pure oxygen will fuck you up pretty bad while pure nitrogen will do the same thing while protected IP is necessary to stimulate complex innovation, it must be limited to allow complex innovation since if you do something worthwhile it'll probably somehow infringe some crappy patent or whatnot in the end it comes back to the enduring problem of big corporations owning the media that we rely on to inform us about politics while big corporations are also buying the politicians to entrench their positions, they're fucking us with the candle at both ends and it's totally contrary to the necessity for consumers in a capitalist economy and voters in a democratic country to be well informed
yeah, and no research more advanced than finger-painting
CSS is for elitists that think they're better than the rest of us because they can design sites that don't work right in the world's most popular browser. Yeah, yeah, blame the browser; it's not microsoft's fault. If you just use normal HTML internet explorer is fine. CSS and XHTML are just a pipedream, and there's no good reason to use them. Seperation of style from content? Yeah, great ideal, but why? Wanna make people able to grab data from your site, make an RSS feed. HTML is about presentation and it always has been.
Slashdot trolling phenomena
From Wikipedia, the free encyclopedia.
Slashdot trolling phenomena make up a large subset of the bizarre and complex Slashdot subculture found on the popular Slashdot technology website. They are a mixture of juvenilia, sarcasm, deliberately bad jokes, tasteless nonsense and highly developed and artistic attempts to provoke outraged responses from other forum users, amuse them, or challenge their thinking. Slashdot trolling is a subset and a microcosm of Internet trolling in general.
In addition to trolling, there are a number of recurring, off-topic jokes that are seen on the site. See Slashdot subculture.
There exists a trolling sub-subculture, referred to as Trolltalk, with a complex array of trolling organizations that all exists within the depths of the slashdot comment system.
This is a list of some of the trolls that may be encountered when browsing Slashdot comments. Some of these behaviours are usually considered to be more offensive or insightful than others. On Slashdot, many of these phenomena have become the object of parody.
See List of Slashdot trolls for links to examples in each category.
Table of contents [showhide]
1 Disruptive Trolls
1.1 Crapflooding
1.2 Page widening/lengthening
2 Offensive Trolls
2.1 Shock sites and shock content
2.2 Homosexuality & Racism
2.3 Nationalistic insults
3 Deceptive Trolls
3.1 Article text alteration trolls
3.2 Web vendor referral trolls
3.3 Signature trolls
3.4 Movie spoiler
4 Other Trolls
4.1 First post
4.2 *BSD is dying
4.3 Stephen King is dead
4.4 Hot grits / Natalie Portman
4.5 Reigniting flamewars
4.6 Pancake Eating Ninja Troll
5 Minor Trolls
6 Related articles
Disruptive Trolls
Crapflooding
Crapflooding consists of multiple copies of the same message posted many times with slight variations in order to avoid being filtered. Scripted crapflooding attacks, in which the process of posting is automated, can be very effective. Usually used in conjunction with a crapflood, some trolls write or copy offtopic stories into their comments. Many involve gratuitous and homoerotic sex scenes with the names of Slashdot's editors or other open source celebrities substituted for the characters in the original story. Other stories generally have no set topic and are usually nonsensical and surreal as well as offensive. Some trolls simply post comments that are completely incoherent on any level. Occasionally, trolls may post Base64 encoded images and comments, which appear nonsensical until decoded, whereupon they appear merely offensive (most of the time).
See also lameness filter.
Page widening/lengthening
The original page widening posts were simple messages consisting of one long stream of characters with no spaces. This caused browsers to render a very wide page with horizontal scroll bars, making it nearly impossible to read the comments page. Slashdot began inserting spaces into any long run of characters to prevent this and so began the evolutionary battle between Slashcode and the page widening trolls. Newer and more inventive ways of causing page widening were discovered, with the use of blockquote tags and the "." character to cause extreme widening on Internet Explorer. These methods were also eventually closed off by the Slashdot editors. Improvements in browser software have also closed many of the loopholes used to widen pages.
Offensive Trolls
Shock sites and shock content
A popular technique amongst Slashdot trolls is to post links to "shock sites" in order to annoy and offend other readers by tricking them into following the links. This is often accomplished by posting the link under the guise of being another link to the article or a rebuttal to the article.
A variation on this theme is for a troll to accuse a legitimate link or comment as being a link or reference to a shock site. In some cases this can have the desired effect of a
I just heard some sad news on talk radio - The last *BSD coder, Natalie Portman was found dead in her Maine home this morning. She was naked and petrified, and covered in hot grits. Police are speculating that she didn't pay her fucking SCO license. I'm sure everyone in the Slashdot community will try and fuck her dead corpse - even if you didn't enjoy her work, there's no denying her contributions to geek fapping. Truly an American icon.
FIRST POST
ahaha you moron..you can disable meta moderation and all that shit in your preferences
can you imagine a beowulf cluster of karma in soviet russia whoring YOU, you insensitive cliched clod?
Fucking karma-whoring shit-sucking goat fucker.
f fffffffffffffffffffffff
Fuck karma.
MOD ME DOWN, I HATE THE FUCKING META MODERATION MESSAGES!
die anti caps filter..fffffffffffffffffffffffffffffffffffffffff
Santorini. I've been there, and I've seen what remains and has been excavated of the (now underground) city. IIRC it was a part of the advanced Minoan civilisation of Crete, which disappeared for no apparent reason. I guess the economic and environmental damage caused by a volcanic event like this could go some way towards an explanation, but I don't really remember the history too well..since I was only about 7 when I went :)
r ini.jpg
http://asterweb.jpl.nasa.gov/gallery/images/santo
see that island? it used to have a middle.
Attention: Word recognition and interpretation.
../project/experimental and /etc/apt/preferences.
First word: NECESSARY
Example of usage: "Unlike most Linux distributions it isn't NECESSARY to wait months for a new version to be released for you to upgrade your system"
Second word: USUAL
Example of usage: "Unlike most Linux distributions it isn't USUAL to wait months for a new version to be released for you to upgrade your system"
The mention of Linux is flamebait, and an irrelevant comparison. I judge Linux by the quality of the best*, not the average of all.
Or should we judge BSD while including OpenBSD and its atrocious scalability/hardware support? Perhaps Mac OS X and its cost, case insensitivity and platform specificity? Hell, maybe we should judge the GNU project by how greasy RMS' beard is.
* `Best' is defined herein as debian unstable with judicious usage of
I have never used a linux distribution which lacks a tool for updating software without upgrading to the next official release. Redhat had one, mandrake had one, suse had one..and most importantly, debian has one.
:)
okay, minor lie; linux from scratch had no such tool. on the other hand, linux from scratch had no installer and consisted entirely of a manual explaining how to compile the software.
Ah yes; I missed the bit where I said "You are personally totally responsible for someone's death by your use of homophobic language". Homophobic language is homophobic whatever the intended meaning is; by the way, `homosexual' is not a term commonly considered to be homophobic any more than the word `oscillating'. I'm not demanding a pound of your flesh; I am stating that there is no legitimate reason to call things gay except in a non-discriminatory sexual context. It doesn't matter at all how you personally interpret the word, unless you only talk to yourself.
You're typing. The good thing about typing on a computer is that you can go back and remove things that you normally say involuntarily. If you can't be bothered to remove homophobic language, you are contributing a small part to the current situation where homosexuals have the highest suicide rate of any group in society (well, any group in society that isn't grouped by mental health, of course).
p.s.: the death penalty is more expensive than life imprisonment.
Actually, I think that's lose. As in you lose.
any mention of a certain bullshit hollywood production with the shittiest scientific basis for a film since the neverending story will result in death. of the poster. thanks for not getting yourselves killed.
overboard? phpBB stable's template engine is a fairly minimalistic, baseline templating implementation :) nothing near as complex as smarty or others. :)
phpBB 2.2 has a great, fast templating/styling system that's vaguely a hybrid of phpLib and Smarty. Not stable yet, but worth remembering for the future.
YOU FAIL IT. Real trolls post the 0th post, not the 1st post.
YOU FAIL IT!