did someone delete one of my uploads ?

Points of Required Attention™

Please chime in on a proposed restructuring of the ROM hacking sections.

05-02-24 05:36 AM

Guest: Register | Login

0 users currently in General Chat | 6 guests | 2 bots

Main - General Chat - did someone delete one of my uploads ?

New thread | New reply

kuja killer

Posted on 04-27-10 07:27 AM (rev. 3 of 04-27-10 12:07 PM)

Link | Quote | ID: 130594

Level: 55

Posts: 183/628
EXP: 1244450
Next: 69739

Since: 03-20-07
From: Lake Havasu City, Arizona

Last post: 287 days
Last view: 1 day

I haven't been able to get online all day long since i woke up this morning until just a short awhile ago tonight after almost 12 hours, and i noticed all of a sudden when i was looking at the acmlm uploader, one of my files is suddenly gone and deleted.

I'm just wondering if a moderator or admin here deleted one of my files from the "generic user bin" today for any reason ?
I was just curious. Was my level editor.

blackhole89

Posted on 04-27-10 11:47 AM

Link | Quote | ID: 130601

The Guardian
Moloch whose eyes are a thousand blind windows!
Level: 124

Posts: 3067/4196
EXP: 21542853
Next: 293748

Since: 02-19-07
From: Ithaca, NY, US

Last post: 477 days
Last view: 90 days

Do you have a surviving link to it? If I have the ID, I can check the wastebasket.

____________________

kuja killer

Posted on 04-27-10 12:06 PM

Link | Quote | ID: 130602

Level: 55

Posts: 185/628
EXP: 1244450
Next: 69739

Since: 03-20-07
From: Lake Havasu City, Arizona

Last post: 287 days
Last view: 1 day

yea, it was:
http://acmlm.kafuka.org/uploader/get.php?id=3105

blackhole89

Posted on 04-27-10 01:35 PM

Link | Quote | ID: 130604

The Guardian
Moloch whose eyes are a thousand blind windows!
Level: 124

Posts: 3068/4196
EXP: 21542853
Next: 293748

Since: 02-19-07
From: Ithaca, NY, US

Last post: 477 days
Last view: 90 days

Yeah, it definitively got deleted by someone.

The only people who may delete everyone's (rather than only their own) files are administrators. Are you sure you didn't delete it yourself by accident? (Of course, that kind of accident also could have happened to an administrator who happened to be passing by. I don't see why that file would be deleted, anyway.)

____________________

KP9000

Posted on 04-27-10 02:37 PM

Link | Quote | ID: 130607

Boomboom

Level: 90

Posts: 1294/1975
EXP: 6956551
Next: 232058

Since: 02-19-07

Last post: 3586 days
Last view: 3210 days

Well, I deleted a file yesterday (http://acmlm.kafuka.org:81/uploader/get.php?id=3104) that had a NES ROM in it so I decided to get rid of it. It was that Atari#### guy floating around here that linked the file from somewhere in another thread. Dude apparently doesn't know 'bout IPS patches!

Dunno about id=3105 though.

____________________

kuja killer

Posted on 04-27-10 04:24 PM

Link | Quote | ID: 130609

Level: 55

Posts: 186/628
EXP: 1244450
Next: 69739

Since: 03-20-07
From: Lake Havasu City, Arizona

Last post: 287 days
Last view: 1 day

no, no way i could have myself, last thing i know is i uploaded wanting to share it with the public, had like 14 or 15 downloads, intetnet was down all day long yesterday, next thing i know i finally get to come back on last night, and notice it's magically gone and deleted. :|

Cellar Dweller

Posted on 04-27-10 08:12 PM

Link | Quote | ID: 130616

Snifit
Level: 39

Posts: 264/287
EXP: 385364
Next: 19407

Since: 02-19-07
From: Arkansas

Last post: 4057 days
Last view: 3225 days

I wonder why there has been no mention of grepping the server logs to find out how the upload got deleted.

Also, I noticed the delete links look like ordinary GET links. Is there some kind of confirmation page that sends a POST request to actually delete the file? If not, it would be easy to abuse <IMG> tags to delete other user's files.

Gywall

Posted on 04-28-10 02:07 AM

Link | Quote | ID: 130628

Level: 52

Posts: 446/561
EXP: 1053106
Next: 30734

Since: 02-19-07
From: UK

Last post: 4553 days
Last view: 2928 days

Posted by Cellar Dweller I wonder why there has been no mention of grepping the server logs to find out how the upload got deleted. Also, I noticed the delete links look like ordinary GET links. Is there some kind of confirmation page that sends a POST request to actually delete the file? If not, it would be easy to abuse <IMG> tags to delete other user's files. Just tested the img tag theory.. and that did delete a test file. Nothing more. Blam! ____________________
	In the event of this post affecting your satisfactory rights, no compensation will be given.

blackhole89

Posted on 04-28-10 02:11 AM

Link | Quote | ID: 130629

The Guardian
Moloch whose eyes are a thousand blind windows!
Level: 124

Posts: 3069/4196
EXP: 21542853
Next: 293748

Since: 02-19-07
From: Ithaca, NY, US

Last post: 477 days
Last view: 90 days

Yeah, the uploader was written up before the present cryptographic functions were around... I probably should equip it with the safety features we already use for polls.

____________________

Cellar Dweller

Posted on 04-28-10 02:47 AM

Link | Quote | ID: 130631

Snifit
Level: 39

Posts: 266/287
EXP: 385364
Next: 19407

Since: 02-19-07
From: Arkansas

Last post: 4057 days
Last view: 3225 days

You could just use POST requests from a small form to delete the file. If you want a regular looking link instead of a button, put the button inside of a <NOSCRIPT> tag and use a little client side script to display a link to submit. That way you get protection from image tag abuse, regular looking delete links, and working with client side scripting disabled.

Using crypto tricks strikes me as overly complicated for a problem like this. I think that doing the polls as they're now was a mistake, and I'd rather not see it repeated.

blackhole89

Posted on 04-28-10 12:13 PM

Link | Quote | ID: 130645

The Guardian
Moloch whose eyes are a thousand blind windows!
Level: 124

Posts: 3070/4196
EXP: 21542853
Next: 293748

Since: 02-19-07
From: Ithaca, NY, US

Last post: 477 days
Last view: 90 days

Would you mind to elaborate on what exactly you see as problematic in the present solution of handling the poll votes? As no poll is affected by the same vote being submitted multiple times, it doesn't even violate the less strict definition saying that GETs should be idempotent (and nowadays, few people seem to pay any attention to such concepts anyway).

____________________

Main - General Chat - did someone delete one of my uploads ?

New thread | New reply

Page rendered in 0.022 seconds. (321KB of memory used)
MySQL - queries: 47, rows: 67/67, time: 0.015 seconds.