Search found 81 matches
- Fri Feb 19, 2010 12:26 pm
- Forum: [3.x][Archive] RFCs
- Topic: [RFC|Accepted] Symfony 2
- Replies: 84
- Views: 182097
Re: [RFC] Symfony 2
EXReaction: We have already defined an update mechanism for necessary security updates which could be present in phpBB or in third party products. Besides Symfony 2 is a mature product which has learned a lot from previous version and I believe security concerns in the basic low-level functions it's...
- Thu Feb 18, 2010 11:47 am
- Forum: [3.x][Archive] RFCs
- Topic: [RFC|Accepted] Symfony 2
- Replies: 84
- Views: 182097
Re: [RFC] Symfony 2
How will we manage distribution? Will Symfony be packed together with phpBB when distributing or will it be listed as a requirement for installation which must be acquired manually?
- Mon Feb 08, 2010 2:52 pm
- Forum: [3.x] Discussion
- Topic: giveable permissions
- Replies: 1
- Views: 5931
Re: giveable permissions
Why don't you try to take this thought a bit further? Use cases where the current functionality does not work, if it should be just extended or completely remade in some cases. I can't imagine an example where this would be useful and all use cases I can think of can work with current permission set...
- Thu Feb 04, 2010 12:04 pm
- Forum: [3.x] Discussion
- Topic: User Security
- Replies: 37
- Views: 60904
Re: User Security
bobtheman: Those fixes might be easy, but have many drawbacks.
I see you have a lot of suggestion concerning the memberlist. It isn't directly related to this topic, do you think you would create an initial document which we can discuss?
I see you have a lot of suggestion concerning the memberlist. It isn't directly related to this topic, do you think you would create an initial document which we can discuss?
- Wed Feb 03, 2010 5:43 am
- Forum: [3.x] Discussion
- Topic: User contribution
- Replies: 20
- Views: 37015
Re: User contribution
As code reader said, Open Development is not democracy. It is a way for public and the teams apart from developers to participate with their ideas. Developers have the final word about implementing features, after all, they are the ones creating the products. What I meant by unrepresentative votes i...
- Tue Feb 02, 2010 2:35 pm
- Forum: [3.x] Discussion
- Topic: User contribution
- Replies: 20
- Views: 37015
Re: User contribution
IMO votes are useless. discuss, bring arguments and let the best argument win, not "most votes". open development != democracy. open development means the community can offer ideas, critique, arguments, code, documentation and most importantly code reviews. counting yays and nays is meani...
- Sat Jan 30, 2010 12:10 pm
- Forum: [3.x] Discussion
- Topic: User Security
- Replies: 37
- Views: 60904
Re: User Security
Forgot, Example can be found in the Facebook. My name is not my login and i don't find it confusing at all. :) Yes, but you use your e-mail to login, which you would enter anyway. That is the difference in introducing unnecessary field for users to fill in I'm talking about. I know this will probab...
- Fri Jan 29, 2010 11:14 pm
- Forum: [3.x] Discussion
- Topic: User Security
- Replies: 37
- Views: 60904
Re: User Security
deer_buster: I really don't see the need to use invectives against any members of this community. Until now, everyone has been answering your replies in a calm manner stating rational arguments proving another point. The provocative tone you are using against individuals here has nothing to do with ...
- Fri Jan 29, 2010 7:46 pm
- Forum: [3.x] Discussion
- Topic: User contribution
- Replies: 20
- Views: 37015
Re: User contribution
RFCs are meant to give you a possibility to present your ideas and allow the community to participate. After all, they stand for Request for comments. Rather than implementing a feature due to a number of votes from a unrepresentative part of the community, features should be considered based on tho...
- Fri Jan 29, 2010 7:41 pm
- Forum: [3.x] Discussion
- Topic: User Security
- Replies: 37
- Views: 60904
Re: User Security
CAPTCHA was only one of many possible brute force attack prevention measures. Even when a CAPTCHA is broken like many have been in the past, success rates of cracker are still way below 100% and it requires a noticeable amount of computing time. Considering that currently, phpBB has customizable CAP...