Message from RedSunRises in NSL #general


2018-07-05 16:44:14 UTC  

Yeah

2018-07-05 16:44:39 UTC  
2018-07-05 16:44:44 UTC  

But fashbook may be the best tool we got

2018-07-05 16:44:46 UTC  

Adding

2018-07-05 16:45:00 UTC  

its like our personal iron march

2018-07-05 16:45:12 UTC  

It is

2018-07-05 16:46:37 UTC  

My got this is fucking awesome @johnolithicsoftware

2018-07-05 16:54:33 UTC  

https://www.fashbook.biz/ @everyone you are required to have a fashbook account

2018-07-05 16:54:38 UTC  
2018-07-05 16:58:55 UTC  

Why did it send me my password in an email after I signed up

2018-07-05 16:59:08 UTC  

Websites shouldn’t store passwords in plain text

2018-07-05 17:00:11 UTC  

This website is not close to being done.

2018-07-05 17:00:26 UTC  

But it’s something, I like it

2018-07-05 17:00:41 UTC  

It looks good so far, just triggered my autism lol

2018-07-05 17:00:44 UTC  

the low popularity of it will keep us low enough for now

2018-07-05 17:00:52 UTC  

it can be fixed as we go

2018-07-05 17:00:59 UTC  

but it must be fixed at some point

2018-07-05 17:01:03 UTC  

Well 42 Membera as we stand now

2018-07-05 17:01:17 UTC  

basically nonexistant in web map

2018-07-05 17:01:38 UTC  

I am doing some testing on it.

2018-07-05 17:02:40 UTC  

Sending an email with the text that was entered into a form field doesn’t necessarily mean that it’s storing the passwords unencrypted, but it isn’t that comforting lol. The important thing is that if I forget my password, the website should not have the capability of telling me what it is, because it should only know my hashed, encrypted password

2018-07-05 17:03:16 UTC  

@johnolithicsoftware get on I found a big problem that allows me to login in under anyones account thanks

2018-07-05 17:03:46 UTC  

It's not unencrypted. The website has SSL

2018-07-05 17:03:55 UTC  

So it's not unencrypted

2018-07-05 17:04:10 UTC  

it gets encrypted when it goes through the website

2018-07-05 17:04:18 UTC  

It allows you to log in under anyone's name?

2018-07-05 17:04:22 UTC  

How?

2018-07-05 17:04:26 UTC  

John hop on vc

2018-07-05 17:04:30 UTC  

TKCC

2018-07-05 17:04:33 UTC  

Welcome to BetaTesting

Basic
<#463848221731717142>
#default

2018-07-05 17:04:36 UTC  

wot

2018-07-05 17:04:42 UTC  

I made that

2018-07-05 17:04:46 UTC  

oh

2018-07-05 17:05:05 UTC  

that is fucking worrying

2018-07-05 17:05:08 UTC  

It for us to post any problems we find.

2018-07-05 17:05:12 UTC  

Okay I'm on VC

2018-07-05 17:08:21 UTC  

Also, as a word of advice, verify someone’s email before reminding them what their username and password are. You don’t have to remind them anyways, but at least make sure they didn’t mistype their email first lol

2018-07-05 17:10:10 UTC  

Yeah I wanted to make it convenient.

2018-07-05 17:17:21 UTC  

The best security procedures are really inconvenient

2018-07-05 17:21:04 UTC  

I’m not trying to be an asshole or anything, I’m not exactly a security expert, this one thing is about all I know. That, and sanitize your PHP inputs lol

2018-07-05 17:23:23 UTC  

sanitize the PHP inputs?