Please login or register.

Login with username, password and session length
Advanced search  

News:

You need/want an older version of sNews ? Download an older/unsupported version here.

Pages: 1 [2]

Author Topic: 1.5.31 mika's Comment Submission issue  (Read 8677 times)

bramsyuur

  • Hero Member
  • *****
  • Karma: 23
  • Posts: 873
    • http://snews.vietbee.net
1.5.31 mika's Comment Submission issue
« Reply #15 on: February 05, 2007, 11:27:16 pm »

I think that a better solution for this, to make a bit more secure against spamers, is using base64 encoding to the sum number.
Only it's sugestion.
The spamers are, day by day, more smart.
Logged
La comunidad sNews en tu idioma!
Comunidad sNews en Espaņol

piXelatedEmpire

  • MIA
  • ULTIMATE member
  • ******
  • Karma: 37
  • Posts: 1401
  • currently MIA
1.5.31 mika's Comment Submission issue
« Reply #16 on: February 05, 2007, 11:49:25 pm »

Actually bakercad I mentioned this very thing to P-man on his site the other day, that i thought it wouldn't take long for spammers to harvest the integers from the source and perform the addition..
Logged
my apologies to the sNews crew, but I will be MIA for the forseeable future

Luka

  • Administrator
  • ULTIMATE member
  • ******
  • Karma: 36
  • Posts: 1717
    • http://www.snewscms.com
1.5.31 mika's Comment Submission issue
« Reply #17 on: February 06, 2007, 11:05:28 am »

I'll work on the encription today and update the zips.
Logged

piXelatedEmpire

  • MIA
  • ULTIMATE member
  • ******
  • Karma: 37
  • Posts: 1401
  • currently MIA
1.5.31 mika's Comment Submission issue
« Reply #18 on: February 06, 2007, 11:07:02 am »

Excellent Luka! Thanks very much for all your hard work and dedication to this fantastic piece of software!
Logged
my apologies to the sNews crew, but I will be MIA for the forseeable future

Fred K

  • Still trying to learn stuff
  • ULTIMATE member
  • ******
  • Karma: 130
  • Posts: 2728
    • Personal
1.5.31 mika's Comment Submission issue
« Reply #19 on: February 07, 2007, 02:16:00 am »

So with the inclusion of htmlentities( ... ), those of us with special character needs shouldn't have to use a different charset than utf-8.
But it doesn't work well (why ?)
(sigh)

Quote from: php.net
Like htmlspecialchars(), it takes an optional third argument charset which defines character set used in conversion. Support for this argument was added in PHP 4.1.0. Presently, the ISO-8859-1 character set is used as the default.

Following character sets are supported in PHP 4.3.0 and later.

Table 302. Supported charsets

Charset   Aliases   Description
ISO-8859-1   ISO8859-1    Western European, Latin-1
ISO-8859-15   ISO8859-15    Western European, Latin-9. Adds the Euro sign, French and Finnish letters missing in Latin-1(ISO-8859-1).
UTF-8        ASCII compatible multi-byte 8-bit Unicode.
cp866   ibm866, 866    DOS-specific Cyrillic charset. This charset is supported in 4.3.2.
cp1251   Windows-1251, win-1251, 1251    Windows-specific Cyrillic charset. This charset is supported in 4.3.2.
cp1252   Windows-1252, 1252    Windows specific charset for Western European.
KOI8-R   koi8-ru, koi8r    Russian. This charset is supported in 4.3.2.
BIG5   950    Traditional Chinese, mainly used in Taiwan.
GB2312   936    Simplified Chinese, national standard character set.
BIG5-HKSCS        Big5 with Hong Kong extensions, Traditional Chinese.
Shift_JIS   SJIS, 932    Japanese
EUC-JP   EUCJP    Japanese

Note: Any other character sets are not recognized and ISO-8859-1 will be used instead.
Logged

codetwist

  • Hero Member
  • *****
  • Karma: 50
  • Posts: 940
1.5.31 mika's Comment Submission issue
« Reply #20 on: February 07, 2007, 08:45:28 am »

Why is irrelevant for all practical purposes. It doesn't work. Period. Personally, I doubt that it ever will be ok with utf-8 in php 4 when 5 is already production for long time now.
« Last Edit: September 24, 2007, 04:54:41 pm by codetwist »
Logged

Fred K

  • Still trying to learn stuff
  • ULTIMATE member
  • ******
  • Karma: 130
  • Posts: 2728
    • Personal
1.5.31 mika's Comment Submission issue
« Reply #21 on: February 07, 2007, 05:12:54 pm »

you should tell that to my host... ;D (and a slew of other hosts, who feel that upgrading to php5 is a risky step. or big step. or step.)
Logged

Keyrocks

  • Doug
  • ULTIMATE member
  • ******
  • Karma: 449
  • Posts: 6020
  • Semantically Challenged
    • snews.ca
1.5.31 mika's Comment Submission issue
« Reply #22 on: February 07, 2007, 05:30:34 pm »

Quote from: agentsmith
you should tell that to my host... ;D (and a slew of other hosts, who feel that upgrading to php5 is a risky step. or big step. or step.)
Agreed. Many, many hosts tend to stay a couple of versions back with their server operating systems because a lot of work goes into preparing server applications for online use.

The IT manager with one of the hosts I have used (in the past) explained they are always a few versions behind the latest ones because it isn't practical to change server sofware versions in a commercial, production environment every time a new version comes out. Like you and I... they also know the value of waiting for a couple of version to pass... and that using an older version is 'good medicine' because the bugs are pretty much out of the older versions.

They pretty much all start with the free bundles... and most (if not all) of the security features are not activated in the default packages. These features need to be customized for each server unit... and when they have a hundred or more server units running... they have to customize each install. And... before doing that... they also have to do a fair amount of testing on each version change before they implement it on even the first server.
Logged
Do it now... later may not come.
-------------------------------------------------------------------------------------------------
sNews 1.6 MESU | sNews 1.6 MEMU
Pages: 1 [2]