Development Discussion Board

DoD wrote:Who do you think?

I don't see any username by the name "*beep*" anywhere? I ran a search for the username and it came up with nothing.

DoD wrote:

EliteLamer wrote:I mean, thats what this forum is for isn't it?

No.

*beep* has given you your answer.

Who is *beep*?

Exactly. They disclose these vulnerbilites. They should be sending them to security@phpbb.com, or whatever, not throwing them round the net. They do disclose them to security@phpbb.com and after that they have the right to send the same email to bugtraq and full-disclosure to alert site admins who ...

If you had done your homework to any degree at all, you'd know that is not how the phpBB team adds devs. But there you go, preferring to assume again. Bleh. However they advertise for security people. If they done it, people would do it free of charge, which was the point being raised. I'd quite ag...

W.ert, how did Weirdo unregister himself/delete his username from the database? Only admin can do that. Go figure. I think that one flew over your head.

I'll refer you to my last post. This isn't impossible to have, but it will be very hard to do considering NO ONE gets paid. Trust me. I know many people from the security underground who would happily join a phpBB security team free of charge, if the devs decided to put an AD up on http://www.phpbb...

I just wanted to add that nobody outside of the phpBB Team knows what is being done to resolve these issues. Dare I even say nobody outside the dev. team knows everything that is being done to resolve these issues. So saying that we are doing nothing to prevent these issues is not only asanine, but...

Your suggestion for a dedicated "security team" remains ridiculous. You answered that question to Weirdo, when it was actually me who suggested the idea. If you care to read the thread again, you'll notice. So, whats so "ridiculous" about a dedicated security team? It is normal pratice these days f...

SamG wrote:We all learn from our mistakes, every one of us. And don't forget the "long haul" bit. We all have our bad days, our misunderstood posts, and the lot. It's the long haul that matters.

Long hauls sound like fun. I may stick around.

Wert and the other team members have a job to do, and they do it. It's not like all of us will be best buds just because we're all welcome to be part of the community. The key to "success" is to be a positive contributor to phpBB and its community over the long haul. I try to be a positive contribu...