Message from @johnolithicsoftware
Discord ID: 464490620518531073
I made that
oh
that is fucking worrying
It for us to post any problems we find.
Okay I'm on VC
Also, as a word of advice, verify someone’s email before reminding them what their username and password are. You don’t have to remind them anyways, but at least make sure they didn’t mistype their email first lol
Yeah I wanted to make it convenient.
The best security procedures are really inconvenient
I’m not trying to be an asshole or anything, I’m not exactly a security expert, this one thing is about all I know. That, and sanitize your PHP inputs lol
sanitize the PHP inputs?
Got a Fashbook.
gm_haifisch
I don’t know very much about sanitizing PHP inputs, except that it’s a pain and it’s important. Basically, if there is input that goes to a PHP page, you need to make sure it doesn’t contain anything that could be used to subvert the intention of the input. People can trick PHP into accepting phony code really easily if it isn’t done. It’s especially common in password fields and such. Generally, everyone hates PHP and tries to avoid it, and yet end up getting wrapped up in it anyways. I’ll post a video related to PHP sanitizing, hopefully it will help.
I added you to the group.
Well, I did do such a thing for some of the PHP, like on the entrance page. Where fake PHP inputs are used and through script replaced by real ones which are not visible to the eye.
https://youtu.be/_jKylhJtPmI
Ah, it’s SQL injection, but yeah it’s related to PHP
It definitely needs a lot of work, but it’s pretty impressive. I know how much work goes into some of that because I’ve done just enough programming to know how tough it is, but not quite enough that I could do as much as has been done with it. If I notice things that need fixing, I’ll try to remember to let you know
A German told me there's no difference between American and German beer.
?
I don't think SQL injection will be much of a problem here.
There's only one place that MySQL is used and that's for the login, and I made that fairly secure against injections through various techniques.
I thought ahead on that issue.
?membercount
@everyone we have 42 members and 11 in fashbook. If you’ve joined DM me saying so, if you haven’t then join and DM me telling me you just did.
I just added EvilFascistOverlord now
Assuming that's our EvilFascistOverlord and not someone else who coincidentally made the same name
No it’s him, we have 12 in now @johnolithicsoftware
Cool
Only 30 to go
@AllFather I'm on fash book
@johnolithicsoftware add devi
I think I got him
yep
Got him
Yep
@D3VISTAT0R do you know how to get to the NSL page
All who are added will be able to see the Fashbook NSL group
Ok good deal
I have also begun writing the Protocols of NS.
If you need any help I’m a message away
All right will do, I do want others to correct and revise it to our best quality as well.