Search found 81 matches

by ameeck
Fri Feb 19, 2010 12:26 pm
Forum: [3.x][Archive] RFCs
Topic: [RFC|Accepted] Symfony 2
Replies: 84
Views: 117954

Re: [RFC] Symfony 2

EXReaction: We have already defined an update mechanism for necessary security updates which could be present in phpBB or in third party products. Besides Symfony 2 is a mature product which has learned a lot from previous version and I believe security concerns in the basic low-level functions it's...
by ameeck
Thu Feb 18, 2010 11:47 am
Forum: [3.x][Archive] RFCs
Topic: [RFC|Accepted] Symfony 2
Replies: 84
Views: 117954

Re: [RFC] Symfony 2

How will we manage distribution? Will Symfony be packed together with phpBB when distributing or will it be listed as a requirement for installation which must be acquired manually?
by ameeck
Mon Feb 08, 2010 2:52 pm
Forum: [3.x] Discussion
Topic: giveable permissions
Replies: 1
Views: 3318

Re: giveable permissions

Why don't you try to take this thought a bit further? Use cases where the current functionality does not work, if it should be just extended or completely remade in some cases. I can't imagine an example where this would be useful and all use cases I can think of can work with current permission set...
by ameeck
Thu Feb 04, 2010 12:04 pm
Forum: [3.x] Discussion
Topic: User Security
Replies: 37
Views: 36167

Re: User Security

bobtheman: Those fixes might be easy, but have many drawbacks.

I see you have a lot of suggestion concerning the memberlist. It isn't directly related to this topic, do you think you would create an initial document which we can discuss?
by ameeck
Wed Feb 03, 2010 5:43 am
Forum: [3.x] Discussion
Topic: User contribution
Replies: 20
Views: 21076

Re: User contribution

As code reader said, Open Development is not democracy. It is a way for public and the teams apart from developers to participate with their ideas. Developers have the final word about implementing features, after all, they are the ones creating the products. What I meant by unrepresentative votes i...
by ameeck
Tue Feb 02, 2010 2:35 pm
Forum: [3.x] Discussion
Topic: User contribution
Replies: 20
Views: 21076

Re: User contribution

IMO votes are useless. discuss, bring arguments and let the best argument win, not "most votes". open development != democracy. open development means the community can offer ideas, critique, arguments, code, documentation and most importantly code reviews. counting yays and nays is meaningless and...
by ameeck
Sat Jan 30, 2010 12:10 pm
Forum: [3.x] Discussion
Topic: User Security
Replies: 37
Views: 36167

Re: User Security

Forgot, Example can be found in the Facebook. My name is not my login and i don't find it confusing at all. :) Yes, but you use your e-mail to login, which you would enter anyway. That is the difference in introducing unnecessary field for users to fill in I'm talking about. I know this will probab...
by ameeck
Fri Jan 29, 2010 11:14 pm
Forum: [3.x] Discussion
Topic: User Security
Replies: 37
Views: 36167

Re: User Security

deer_buster: I really don't see the need to use invectives against any members of this community. Until now, everyone has been answering your replies in a calm manner stating rational arguments proving another point. The provocative tone you are using against individuals here has nothing to do with ...
by ameeck
Fri Jan 29, 2010 7:46 pm
Forum: [3.x] Discussion
Topic: User contribution
Replies: 20
Views: 21076

Re: User contribution

RFCs are meant to give you a possibility to present your ideas and allow the community to participate. After all, they stand for Request for comments. Rather than implementing a feature due to a number of votes from a unrepresentative part of the community, features should be considered based on tho...
by ameeck
Fri Jan 29, 2010 7:41 pm
Forum: [3.x] Discussion
Topic: User Security
Replies: 37
Views: 36167

Re: User Security

CAPTCHA was only one of many possible brute force attack prevention measures. Even when a CAPTCHA is broken like many have been in the past, success rates of cracker are still way below 100% and it requires a noticeable amount of computing time. Considering that currently, phpBB has customizable CAP...