Search found 3 matches

by softelp
Mon Oct 21, 2013 12:39 am
Forum: General Development Discussion
Topic: Force HTTPS for Area51
Replies: 1
Views: 3604

Force HTTPS for Area51

I was planning to edit the phpbb.com rule in https://www.eff.org/https-everywhere to redirect area51 to https is there any reason we are not doing it already?
by softelp
Mon Oct 21, 2013 12:36 am
Forum: [3.x][Archive] RFCs
Topic: User Self Delete
Replies: 30
Views: 28914

Re: User Self Delete

Simple: make it board configurable.

User can delete account, dropdown:
*No
*Yes but not mass remove posts
*Yes and all posts.

For my board I would choose the latter, but by doing this we are not restricted to one-size-fits-all.
by softelp
Mon Oct 21, 2013 12:34 am
Forum: [3.1/Ascraeus] Merged RFCs
Topic: [RFC] More secure hashing
Replies: 64
Views: 58921

Re: [RFC] More secure hashing

+1 for scrypt or bcrypt +1 per hash (user) salt -1 for per board hash (explained below) -1 for PBKDF2 -50 for any use of H(key.salt) or similar homebrew functions. Per hash* salt is the way to go *similar to per user but every time a hash is created a new salt is generated. Password Hashing is meant...