 |
| Register | Login | |||||
 |
Main
| Memberlist
| Active users
| Calendar
| Chat
| Online users Ranks | FAQ | ACS | Stats | Color Chart | Search | Photo album |
|
| | ||
|
| Register | Login | |||||
|
Main
| Memberlist
| Active users
| Calendar
| Chat
| Online users Ranks | FAQ | ACS | Stats | Color Chart | Search | Photo album |
|
| | ||
| 0 users currently in Programming. |
| Acmlm's Board - I3 Archive - Programming - Acmlmbored 1.92.9?? |
New poll |  |  |
| Pages: 1 2 | Add to favorites | Next newer thread | Next older thread |
| User | Post | ||
|
ashly138 Newcomer                 Since: 12-11-05 Last post: 6629 days Last view: 6629 days |
| ||
| Where can i get Acmlmbored 1.92.9 | |||
DarkSlaya   930 Gamma Ray      Since: 11-17-05 From: Montreal, Canada Last post: 6298 days Last view: 6298 days |
| ||
| You can't. | |||
|
ashly138 Newcomer Since: 12-11-05 Last post: 6629 days Last view: 6629 days |
| ||
Than what is the one that newst and that we can download?  |
|||
|
Pasgeti_; 560  Since: 11-18-05 Last post: 6337 days Last view: 6308 days |
| ||
| 1.92 If it's still up. I can't bother to find a link now though. | |||
Yoshi Dude TO HELL WITH THIS  Since: 11-17-05 From: Fleepa Last post: 6298 days Last view: 6298 days |
| ||
Originally posted by Dragon master +thanks for sharing AcmlmBoard 1.92, hosted by the man himself. |
|||
|
ashly138 Newcomer Since: 12-11-05 Last post: 6629 days Last view: 6629 days |
| ||
TNX you for da link  |
|||
|
Xeon The master of the universe... Since: 03-09-06 From: Omaha, NE Last post: 6606 days Last view: 6606 days |
| ||
| I still got AcmlmBoard 1.a3 if anyone wants it... | |||
|
Mega-Dog Since: 11-19-05 From: Minnesota Last post: 6319 days Last view: 6301 days |
| ||
Originally posted by Xeon 1.A3 is crapo and has alot of exploits. If you are going to Download 1.92 remember that it still has exploits that are fixable. I am starting to branch Acmlm Boards on hosted pages of mine now... |
|||
Black Lord + Flurry Since: 11-17-05 From: Where indians still roam... Last post: 6299 days Last view: 6300 days |
| ||
| Acmlm Board's in general are crapo, if you want an uncrapo board, download a phpBB, or make your own | |||
|
Xeon The master of the universe... Since: 03-09-06 From: Omaha, NE Last post: 6606 days Last view: 6606 days |
| ||
| Yeah, Acmlm board looks alot like 20 different coding styles colided and blew up all over the script... It was terrible, terrible....... | |||
Parasyte + Red Paragoomba Since: 01-05-06 Last post: 6619 days Last view: 6619 days |
| ||
| Probably because that is exactly what happened? | |||
Stifu Since: 11-18-05 From: Your mom's bed Last post: 6300 days Last view: 6298 days |
| ||
Originally posted by Mega-Dog As opposed to 1.A3 exploits which aren't fixable... Heh ? And yes, some of the code in AcmlmBoards looks like it's been coded by monkeys... Letting so many people touch the code for the "official" board was a bad idea. (edited by Stifu on 03-13-06 01:06 PM) |
|||
|
Xeon The master of the universe... Since: 03-09-06 From: Omaha, NE Last post: 6606 days Last view: 6606 days |
| ||
| Acmlm board has almost no code formatting or definite code structure to follow, and that is why it's so hard to work with. A lot of the exploits are due in fact to some moron thinking it was a bright idea to do "require "$root/", on a lot of the files in the "lib" directory. Also, the lib directory should have permissions set so you can't run the scripts by themselves, that was also the reason that Acmlm board is so unstable. Another problem I see with Acmlm board is poor organization, many of files have code in them that should be somewhere else, like in functions.php, but I found even functions.php is polluted with crap that shouldn’t be there. So you can blame poor coding habits, lack of standards, failure to learn about common PHP exploit techniques and multiple authors for the lax security present in Acmlm board. | |||
|
Stifu Since: 11-18-05 From: Your mom's bed Last post: 6300 days Last view: 6298 days |
| ||
| It's also lame how 20% of the code is commented out... Either remove it entirely, or leave a note as of why it's been kept. Having worthless code lying around adds up to the confusion... | |||
Xeo Belmont Wiiiiiiiiiiiiin  Since: 11-17-05 Last post: 6298 days Last view: 6298 days |
| ||
Originally posted by Xeon Yeah, well as far as I know, 1.92 doesn't use the $root idea at all. (It was a pain setting up 1.A3 with getting $root to work correctly). The A series was extremely cluttered (I've used both 1.A2 and 1.A3, 2 wasn't bad but 3 was a horrible uncompleted mess with almost worthless files everywhere). But I mean, really what can you guys expect? Like others have said, the AB codebase is just made up of multiple people, whom probably worked on it alone when they did. The only time there was an actual "team" was when it was first made, but still Acmlm himself did the majority of the coding. But until we see an official, team of more than just a handful of coders, I think that AB's will continue to be a huge mess. In all honesty if my AcmlmBoard wasn't nearly as large as it is, I probably would have switched over to something long ago. I really love the "look" of AB's, but when you see the code, and see people pulling out exploits left and right, you get sick of it. And having no time at all to learn PHP myself, and not being able to patch stuff up by myself doesn't help at all. I'm thankful to have dedicated frends out there who have patched up my board numerous times, especially DarkSlaya. (edited by Xeogred on 03-14-06 10:21 AM) |
|||
|
Xkeeper Took the board down in a blaze of glory, only to reveal how truly moronical ||bass is. Since: 11-17-05 From: Henderson, Nevada Last post: 6298 days Last view: 6298 days |
| ||
| 1.92: Doesn't use $root or other "here's a big handout of exploit juice" variables, still full of exploits, generally the same coding style (which still isn't that good, but whatever)
-> A branch 1.A3: uses $root but tries to make it defined right, certain scripts broken/not working properly, schemes not working right either, absoloute barf of about 5 coding styles from 4 people -> 9 branch 1.92.9: Most exploits fixed (there's still one, but I don't know where it is so I can't do anything... generally only 2 coding styles, one of which (mine) is considerably more readable, some old code improved and reformatted, etc I have a copy of 1.92.08 laying around (hint: my version numbers are arbitrary) if anyone wants it, since I suppose I can just re-check the RAR and make it distributable, if I can remember whatever it is I left out. |
|||
|
Stifu Since: 11-18-05 From: Your mom's bed Last post: 6300 days Last view: 6298 days |
| ||
| In my own customized version of AcmlmBoard (made from v1.A2), I have, among other things, removed the $root variable. Instead, I have added a $path one that checks the amount of "/" in the address bar to define in which folder level you're in.
So, basically, it does what $root was made for, except you don't need to hardcode the board address somewhere, and it actually works fine. PS: Xk, I always wondered, how do you find out whether there are exploits or not if you don't know what they are ? Unless someone used that hole to screw the board, I'm not sure... |
|||
|
Xeon The master of the universe... Since: 03-09-06 From: Omaha, NE Last post: 6606 days Last view: 6606 days |
| ||
| Well finding exploits is pretty easy if you know PHP, just look for include, require and require_once statements and look for areas where you can include your own files. That is know as a file inclusion exploit. Then there is SQL injection exploit, bad checking on input from forms and cookies can lead to one of these, and they are nasty. Then there is cross-site scripting exploits, or XSS, where someone injects HTML or javas |
|||
|
Kasumi-Astra Flurry Since: 11-18-05 From: Sheffield England Last post: 6298 days Last view: 6298 days |
| ||
| The biggest advantage you can give to exploiters is the source code itself. PHPBB has stuff that's still not fixed last time I heard, and is by no means safe. Another example is the latest exploit in OS X, that was found by trying out a recently patched hole in Unix on OS X. Of course, Apple hadn't fixed the common problem, and it was exploitable in OS X.
Another problem is probably all the people who contributed to the board cut their teeth at one time on it. You can only learn how to patch possible vulnerabilities with experience, and if you ask them all to come back and do things differently, they probably would. You can argue until the cows come home about the problems the board has been through, and it's obvious that at no one point has the board been perfect. People have worked very hard to bring their own ideas to the table, and taken terrible flak for it as well. I have very little respect for someone who has the cheek to criticise the work that people have put in without stepping up to the task themselves. The source code has always been ugly, and many stupid mistakes have been made. But it's important to remember that without the people that did step in, the board development would still be dead. My own projects have carried on a lot of the work I talked about with ||bass, building a basic board system that has clear, commented, structured, object oriented code. If I was working on the board today, that's what I would want to bring to it. |
|||
|
Stifu Since: 11-18-05 From: Your mom's bed Last post: 6300 days Last view: 6298 days |
| ||
| Kasumi: While I understand you, some additions to the board really seemed half-assed. Regardless of the coder's skills, I would say, either try to do something seriously, or don't do it at all. If you want to contribute, at least try to do it right. That doesn't mean you HAVE TO to it right though... But some code bits that would have been okay if just temporary and replaced the following week have remained in the source codes for years.
I also don't like the fact some people tried to add all kinds of useless options to the board (post radar comes to mind) while bug fixes and other improvements were much more urgent. Adding random stuff to the board should come after having made most of the things right in the first place. If you're going to let a number of people contribute to something, it would be clever to organize things first... You do that, I do that, he does that, that way, etc... So it doesn't feel like everyone codes things like they're in their own world, separated from others. There's also the fact that it sometimes feels like some people are doing their best to prevent the board system from evolving. I remember someone even took the time to make a poll button for each of the schemes, yet nobody bothered adding them to the board (or only a long time later, but I'm not sure they were the same buttons that got added anyway). And now, since we moved back to 1.92, those hard-earned buttons are gone. That said, I'm still grateful for the overall work put into the board, and that's one of the reasons I'm here now. |
| Pages: 1 2 | Add to favorites | Next newer thread | Next older thread |
| Acmlm's Board - I3 Archive - Programming - Acmlmbored 1.92.9?? |
| |
