Cool_Tools/vichan
1
0
Fork 0
mirror of https://github.com/vichan-devel/vichan.git synced 2024-12-13 08:11:12 +01:00
Code Releases Wiki Activity
7,708 Commits 50 Branches 28 Tags 71 MiB
01c44a2e93
Commit Graph

660 Commits

Author SHA1 Message Date
8chan
c04d46933e New post form part one 2015-03-10 16:18:28 -07:00
8chan
83cbe5977b less_ip is now per board, not site-wide 2015-03-06 02:00:03 -08:00
8chan
03419dc770 markup() would erroneously set $board on x-board ref 2015-02-26 01:13:07 -08:00
8chan
d970baa5d8 Public action logs commit (log.php) 
Note: In a previous commit, I began making inc/mod/auth.php more modular with the check_login() function. Including it does NOT check mod login by default anymore like it does on vichan. You have to call check_login(). I've finally included it in inc/functions.php. If you have any custom pages that use inc/mod/auth.php, just including functions.php is enough now.
 2015-02-25 17:21:49 -08:00
8chan
3312e38f07 Change from fopen/flock to dio_open/dio_fcntl in file_write 
8chan uses NFS and flock() does not work over NFS. See http://0pointer.de/blog/projects/locking.html for more information.

Without proper file locking, race conditions are possible in ?/settings and other pages. The one in ?/settings is particularly bad, too many successive writes can cause a PHP file with bad syntax to be written which breaks an entire board and many scripts that call openBoard().

You need to install the dio.so module if you merge this commit.
 2015-02-25 17:12:25 -08:00
8chan
4e335db3e8 Add event to quote backlinks 2015-02-18 16:55:03 -08:00
8chan
15987f919f Fix *0 secure tripcodes caused by accidentally feeding + signs to crypt() 2015-02-16 16:24:54 -08:00
8chan
ee635db05f new checkDNSBL() function, return true/false, not error 2015-02-16 16:24:11 -08:00
8chan
ecdc53522f New event: rebuildpost, allows you to bind events to ?/edit 2015-02-16 16:21:30 -08:00
8chan
804247654d No IP showing in purge() 2015-01-28 17:57:16 -08:00
Pashe
916cb4c997 inc/functions.php: Tabs in code tags (fixes #328) 2015-01-03 23:48:57 -06:00
8chan
351375185e Early 404 option in clean() 2014-12-31 22:33:31 -08:00
8chan
87e914948b SECURITY / XSS : ?/edit allowed arbitrary HTML to be added by any user thru addition of <tinyboard raw html>1</tinyboard> 
This allowed ANY user with ?/edit privilege to also have raw_html regardless of whether they had $config['mod']['rawhtml']

Now, any changes to <tinyboard> markup modifiers via ?/edit are not allowed. They are removed at read time, and before write they are removed again and the ones in the database (which should be clean...) are inserted instead.

Please immediately apply this patch to your instance if you are running any version of 8chan/infinity.
 2014-12-24 06:08:19 -08:00
8chan
f8c1d7c80f what the fuck were you even thinking 
this is an insane default

BUGFIX: all-Japanese, all-Arabic, etc posts no longer trip the filter if not robot_enable
 2014-12-15 17:50:22 -08:00
8chan
b9b1935e08 Bug fix: Boards were always unindexed in search engines 2014-12-14 03:28:04 -08:00
8chan
9db6895c98 Allow + in board names, add some new config vars (news+) 2014-12-14 03:25:43 -08:00
8chan
3df5b86235 Return some important info from listBoards() 2014-12-03 00:19:50 -08:00
8chan
8d34866636 Fix locale bugs, init_locale was not calling setlocale!? 2014-12-03 00:17:24 -08:00
8chan
dd1c160d35 Hash masked IPs option, use less_ip in inc/bans 2014-12-03 00:15:24 -08:00
8chan
fa9a3da913 New boards.html page now with tags 2014-12-03 00:10:28 -08:00
8chan
6d54ae5262 read.php +50 fix 2014-11-22 00:44:57 -08:00
8chan
7d11c7a884 Fix mod mode for read.php 2014-11-21 16:17:00 -08:00
8chan
faa51accaa We dynamic pages now, read.php 2014-11-21 04:05:20 -08:00
8chan
4f2398f7b8 Make deletePost more tolerant of errors 
Sometimes thumbnail generation fails but the post is still there, sometimes post deletion is aborted halfway through

Ignore errors from file_unlink and don't fail if $f->file, $f->thumb not set
 2014-11-12 21:06:58 -08:00
8chan
cfb31c53af Merge https://github.com/ctrlcctrlv/8chan 2014-10-22 19:20:28 -07:00
8chan
0f8aef4f50 I'm going to run this on a cron job instead...people were using this to DoS 2014-10-22 19:19:49 -07:00
8chan
840c42adc4 array_unique to prevent JS Errors 2014-10-22 19:16:45 -07:00
unknown
4c8e920303 [#184] Resolved duplicate report issue. Added rudamentary Clean functionality. 2014-10-20 10:17:19 -05:00
unknown
3c2ebb2d6b Merge branch 'master' of git://github.com/ctrlcctrlv/8chan 
Conflicts:
	templates/8chan/index.html
 2014-10-19 11:15:57 -05:00
8chan
fceea15317 Be smarter about rebuilds 2014-10-18 13:21:08 -07:00
unknown
9920a51ff5 - Resolved board creation script throwing SQL error for mismatched column count. 
- Resolved warnings would be thrown if inc/dnsbls.php did not exist.
- Resolved problem where shell_exec_error was incorrectly reporting a success in instances where 'md5sum' was not supported, resulting in "'md5sum'" literally being recorded as the file hash. This then lead to hex2bin throwing an error on page load, preventing access to threads (among other problems).
 2014-10-17 02:32:39 -05:00
8chan
9bf6ebec43 SECURITY: IPs were still being shown on IP_less in a few places 2014-10-12 16:34:34 -07:00
8chan
fe9297aaaa Attempt to hide IPs from board volunteers 2014-10-09 21:39:37 -04:00
czaks
3e88cc23fb Merge vichan 2014-10-09 04:09:44 +02:00
czaks
3a552e5b76 hopefully fix locales 2014-10-09 04:09:30 +02:00
czaks
d3a52f6aed Merge vichan 2014-10-09 03:57:38 +02:00
czaks
dfd05e88f9 possible fix of themes` interactions 2014-10-09 03:57:18 +02:00
8chan
d58adad48d SECURITY: Move indexed option to table...fixes unindexed boards appearing in search/random 2014-10-07 20:54:00 -07:00
8chan
ba88035109 Edited at feature...add edited_at DATETIME NULL to all tables to use it. 2014-10-07 17:35:50 -07:00
Fredrick Brennan
52a662a395 Merge pull request #160 from wopot/patch-2 
lineup 4 if´s with || (OR)
 2014-10-07 11:24:56 -04:00
8chan
3da946268a SECURITY: Poster IDs could reveal IPs across boards 
Imagine the following scenario:

Alice has permission to view IPs on board A, and Bob has permissions to view IPs on board B.

If the post number was to match, and the same IP made both posts, A and B could trade user IPs which they wouldn't normally have permission to do so. This weird bug has already creeped up on 8chan.co and is now patched.
 2014-10-07 08:16:21 -07:00
wopot
9c47ebed03 lineup 4 if´s with || (OR) 2014-10-07 16:33:27 +02:00
czaks
cc44a64097 Merge https://github.com/vichan-devel/vichan 2014-10-07 00:17:29 +02:00
wopot
c7351dff09 4 times "elseif" is not the way 
and precalc. value sometimes help if well commentent
 2014-10-07 00:16:02 +02:00
Bui
aba8d27ace wasn't aware of DNS function 2014-10-05 23:20:06 +02:00
Bui
1e95e58811 don't break if dns_system is true 2014-10-05 23:20:06 +02:00
Bui
8b9932218f add forward-confirmed reverse DNS 2014-10-05 23:20:06 +02:00
Bui
3f4381cf40 wasn't aware of DNS function 2014-10-06 04:30:32 +09:00
Bui
ca7955ecfc don't break if dns_system is true 2014-10-06 04:08:10 +09:00
Bui
98b172980f add forward-confirmed reverse DNS 2014-10-06 03:37:13 +09:00
czaks
8b698e36e7 Merge https://github.com/vichan-devel/vichan 
Conflicts:
	inc/mod/pages.php
	js/auto-reload.js
	js/id_colors.js
	js/id_highlighter.js
	stylesheets/style.css
	templates/index.html
 2014-10-05 18:12:19 +02:00
kaf
9cee5f6c61 [bugfix]ban appeals (was also present in tinyboard) 2014-10-05 12:53:02 +00:00
8chan
993df563db undo no cache test 2014-09-27 20:05:33 +00:00
8chan
9dc91c1bf4 fuck you php 2014-09-26 03:44:34 +00:00
8chan
19e864c15c I don't know what I did. 2014-09-25 22:53:56 +00:00
Jayden Callahan
fbdb72994a Config: add a thing for clustered installations 2014-09-26 06:46:06 +09:30
Fredrick Brennan
e972548ae2 More dice limits 2014-09-20 15:20:22 +00:00
8chan
adb1294016 Merge https://github.com/vichan-devel/vichan 2014-09-13 16:38:06 +00:00
Juan Tamad
53ada6a5ff added option for showing the mod in ban page. 
also fixes issue where the Staff is not shown in ban appeals.
 2014-09-01 06:30:33 +08:00
8chan
3c8367240a Arbitrary maximum dice 2014-08-30 20:07:08 +00:00
8chan
e28f233e3d Close #51: Prevent players from cheating the dice roller by using markup 2014-08-10 15:38:02 +00:00
8chan
db6c0e634c Close #51: Prevent players from cheating the dice roller by using markup 2014-08-10 15:37:28 +00:00
8chan
1ea3da1db6 Merge Barrucadu/diceroll into master 2014-08-10 15:35:11 +00:00
8chan
06faa65fdd Merge Barrucadu/diceroll into master 2014-08-10 14:51:45 +00:00
8chan
0ac9aaaf25 Merge vichan-devel 2014-08-10 14:41:40 +00:00
czaks
c3662d4a59 handle tinyboard flags with length=0 2014-08-09 05:12:36 +02:00
8chan
0dc66a0faa Merge https://github.com/vichan-devel/vichan 2014-07-06 00:18:45 +00:00
czaks
9b943da60a Revert "Rework the GeoIP code, add country-based poster names" 
This reverts commit db3c7f4ee9.
 2014-07-06 02:13:08 +02:00
czaks
a9b035d822 Revert "Second rework of the GeoIP code, now supporting cities!" 
This reverts commit 2488e77e86.
 2014-07-06 02:12:54 +02:00
Jano Slota
2488e77e86 Second rework of the GeoIP code, now supporting cities! 2014-07-06 01:30:38 +02:00
Jano Slota
db3c7f4ee9 Rework the GeoIP code, add country-based poster names 2014-07-06 01:29:12 +02:00
Jano Slota
4adf893c39 Random names for anonymous users - thanks to svnth 2014-07-06 01:27:38 +02:00
czaks
6a3dbe5c98 Merge 4.5 
Conflicts:
	inc/display.php
	templates/post_reply.html
	templates/post_thread.html
 2014-07-06 01:24:16 +02:00
Chen-Pang He
97069ea490 Introduce $config['gzip_static'] 2014-07-06 01:12:12 +02:00
Michael Walker
3c70fe78ae Move rolling into an event handler 2014-07-05 21:58:12 +01:00
8chan
8cd15c9dd8 Merge https://github.com/vichan-devel/vichan 2014-06-21 19:37:24 +00:00
czaks
26884e8e11 Merge 4.5 
Conflicts:
	post.php
 2014-06-20 23:35:45 +02:00
Techan
eb2a468a09 Improve protection from displaying errors to visitors 2014-06-20 23:07:07 +02:00
czaks
b12612ac57 fix sql error as reported by a Romanian anon 2014-06-14 18:33:55 +02:00
8chan
a19b0ac160 Merge https://github.com/vichan-devel/vichan 2014-05-14 17:53:36 +00:00
Fredrick Brennan
9b3f8421fc Fix displaying bans 2014-05-14 13:51:49 -04:00
8chan
c26e339a77 SWITCH TO 5.0; MERGE VICHAN 2014-05-14 16:09:04 +00:00
8chan
b6fc7fc815 Merge vichan-devel 2014-05-05 15:04:41 +00:00
czaks
dafe0d5896 Merge branch 'master' of github.com:vichan-devel/Tinyboard into staging 2014-05-04 00:19:45 +02:00
czaks
8d4104feb0 restore php5.3 compatibility. thx for Kihokki for reporting that 2014-05-03 23:58:24 +02:00
czaks
211c1acec9 actually fix this bug 2014-05-02 19:32:18 +02:00
czaks
9416587d40 fix a bug with multiple images; thanks to saiko of tahta.ch for reporting it 2014-05-02 18:58:21 +02:00
Fredrick Brennan
042e7b9c59 Deprecate postControls(), per-file deletion and spoilering 2014-04-30 17:18:35 -04:00
copypaste
c483e1258c multiimage posting 2014-04-27 15:48:47 +02:00
8chan
4142362046 Merge vichan 2014-04-21 13:46:04 +00:00
8chan
7e8823d538 Enable search page for 8chan 2014-04-21 13:42:49 +00:00
czaks
a9c35844c7 fix themes resetting the board 2014-04-21 15:38:18 +02:00
czaks
b33e8cb10d fix previous commit 2014-04-19 23:06:59 +02:00
ctrlcctrlv
465986d06c use all boards for search.php if boards are not specified 2014-04-19 23:03:23 +02:00
8chan
18524e4810 Merge vichan-devel 2014-04-19 20:11:34 +00:00
kaf
f83c87b623 Added: /pol/-like flags based on a953229de7 
Conflicts:
	inc/config.php
	templates/post_form.html
 2014-04-19 18:48:17 +02:00
czaks
2d34274672 fix posting of ı and İ, possibly a bit more xD 2014-04-18 14:38:05 +02:00
root
44729bfc32 Merge unmerged live changes 2014-04-16 15:14:02 +00:00
root
f3585ebfb0 Merge vichan-devel! 2014-04-16 15:05:32 +00:00
czaks
5a73af9ea1 add a webm posthandler 2014-04-06 21:54:22 +02:00