Marcin Łabanowski
3e23c028de
Merge pull request #215 from antedeguemon/master
...
Prevents reports with too many characters
2017-07-23 17:55:22 +02:00
czaks
736e982945
[SECURITY] Lessen security impact
...
post.php: misc fixes
2017-05-17 14:05:01 -04:00
Horija
dc7a507526
Update post.php
2017-04-24 12:21:33 +02:00
czaks
d85cb47647
report event
2017-03-11 08:34:58 -05:00
vholmes
387ebe9c0c
Prevents reports with too many characters
2017-02-15 23:07:50 -02:00
czaks
a5e7b3da6f
nntpchan: work around php nonsense
2016-08-19 23:15:42 +02:00
czaks
a779b96370
second iteration of nntpchan implementation
2016-08-15 00:56:06 +02:00
czaks
1c24c69999
Merge branch 'master' of github.com:vichan-devel/Tinyboard
2016-08-14 16:24:25 +02:00
czaks
5e335a8564
preliminary inbound nntpchan support
2016-08-14 16:24:17 +02:00
ptchan-foss
8548a4ff70
Fixed report syslog message
2016-08-12 18:18:54 +01:00
nekomiko482
a55760299c
Fixes incompatibility with BSD's md5 output format.
...
fixes #190
2016-07-07 12:53:40 +03:00
czaks
11cecf8452
Revert "[BUG] Image reject repost board option now also affects YT embeds"
...
This reverts commit b476b66007
.
2016-06-21 05:03:44 +02:00
czaks
e230f1472c
don`t ocr non-images
2016-06-10 12:41:53 +02:00
czaks
8a46c7a0d5
tesseract OCR support for spamfilters
2016-06-09 11:09:10 +02:00
czaks
644f227ab3
fix "Undefined variable: pid"; thanks fpdl and MrFreeman
2016-05-08 03:09:20 +02:00
Fredrick Brennan
505adffcdc
Cyclical threads ♺
2016-05-06 16:39:20 +02:00
8chan
7911c374e8
Public action logs commit (log.php)
...
Note: In a previous commit, I began making inc/mod/auth.php more modular with the check_login() function. Including it does NOT check mod login by default anymore like it does on vichan. You have to call check_login(). I've finally included it in inc/functions.php. If you have any custom pages that use inc/mod/auth.php, just including functions.php is enough now.
===================================
Also: backports 351375185e
(early 404)
2016-05-06 15:44:26 +02:00
Fredrick Brennan
b476b66007
[BUG] Image reject repost board option now also affects YT embeds
2016-05-06 15:12:08 +02:00
Fredrick Brennan
8943bb0bb3
Rewrite report system due to flooding
2016-05-05 12:57:52 +02:00
8chan
3eb755ee7e
Move login check in inc/mod/auth.php to a function
...
This allows pages like create.php to not include inc/mod/pages.php while still being able to use the mod auth functions (like generating salts and passwords)
2016-05-05 11:40:52 +02:00
czaks
d310abc95c
Merge branch 'master' of github.com:vichan-devel/vichan
2016-05-05 10:54:09 +02:00
czaks
186ad5ca86
bsd fixup
2016-05-05 10:53:44 +02:00
czaks
19b70663d7
remove magic_quotes check; it`s 2016 after all
2016-05-05 10:29:13 +02:00
czaks
4c827cf105
fix some nonsense
2016-05-05 10:22:34 +02:00
czaks
c4b98e94ce
[SECURITY] harden for imagetragick (we aren`t hit by the bug, but we were passing uncommon filetypes, like JPEG2000, directly to imagemagick)
2016-05-05 10:17:14 +02:00
czaks
dcf5d699bd
simplify the md5 execution logic
2016-05-05 08:22:19 +02:00
czaks
b5370fd3e5
fileboard: op tag fix
2015-04-23 02:41:17 +02:00
Marcin Łabanowski
4014682882
fileboard support
2015-04-22 06:06:34 +02:00
czaks
34eeaccea9
optimization: we don`t need bans.php most of the time and bans.php has big dependencies
2015-04-05 16:31:20 +02:00
czaks
6cbd51b83c
for fastcgi users: rearrange post.php, sort of, so that posts are created faster, and we can leave php to generate themes in the background
...
same for post deletion
2015-03-31 09:21:16 +02:00
czaks
10f93d0d43
implement a protection against transparent proxies
2015-03-24 05:19:25 +01:00
czaks
e999955d08
...
2015-03-10 13:28:55 +01:00
czaks
bdb6001f3f
support for slugified links; may introduce a few bugs
2015-03-10 12:48:59 +01:00
Jason Puglisi
6d28f9c98e
Fixed error that would prevent posting without ['mod']
2015-02-26 22:51:45 -05:00
Wesley
2d396c4eb8
Add E Z board locking feature
2015-02-15 21:16:36 -05:00
czaks
f4422e597b
fix a related bug
2014-10-24 13:43:15 +02:00
czaks
daad519b85
config[php_md5] feature
2014-10-24 13:24:33 +02:00
Bui
cb9b4db73d
do security checks *after* checking captcha
2014-10-07 00:15:45 +02:00
Fredrick Brennan
23c73ca839
Allow the user to decide whether or not he wants to display his country
2014-09-20 16:35:28 +00:00
Ian Bradley
c1ecef3772
Added support for BSD md5 incase md5sum isn't available.
2014-09-15 16:33:37 -07:00
czaks
9b943da60a
Revert "Rework the GeoIP code, add country-based poster names"
...
This reverts commit db3c7f4ee9
.
2014-07-06 02:13:08 +02:00
Jano Slota
a1d2d2388a
Fix the bug that allowed to post an empty reply
2014-07-06 01:29:30 +02:00
Jano Slota
db3c7f4ee9
Rework the GeoIP code, add country-based poster names
2014-07-06 01:29:12 +02:00
8chan
eea984859b
Better remote errors
2014-05-27 23:50:11 +00:00
Fredrick Brennan
c1bc5778dd
Derp, filesize was always being based on first file
2014-05-17 15:47:15 -04:00
Reid 'Crafted'
78ffd76fcf
Make post.php compatable with PHP 5.3x
...
Compatible with earlier versions of PHP. This should work on 5.4 too, but I haven't tested it.
2014-05-13 21:23:06 +01:00
czaks
19ce50c545
Merge ../pl
...
Conflicts:
post.php
2014-05-10 21:58:23 +02:00
Jano Slota
c2c7859a9e
Fixed a little exiftool bug
...
Conflicts:
post.php
2014-05-10 21:50:01 +02:00
czaks
cd15458a32
Merge remote-tracking branch 'origin/4.5'
2014-05-06 21:53:38 +02:00
czaks
f7278e5a61
user moderation support
2014-05-06 21:53:05 +02:00
Fredrick Brennan
d31a353962
Allow post deletion switch
2014-05-05 18:03:51 -04:00
czaks
0a53fdb3a2
remove quick-reply harder
2014-04-30 22:46:20 +02:00
czaks
46802d3f1b
fix post event
2014-04-29 21:18:17 +02:00
czaks
d57dcc5e6e
fix remote upload
2014-04-29 20:50:28 +02:00
czaks
b94e39148b
remove quick-reply-old. it probably doesn't work now, it certainly isn't
...
maintained. this is an old cruft and if needed, it needs rewriting.
2014-04-29 18:37:29 +02:00
copypaste
c483e1258c
multiimage posting
2014-04-27 15:48:47 +02:00
kaf
f83c87b623
Added: /pol/-like flags based on a953229de7
...
Conflicts:
inc/config.php
templates/post_form.html
2014-04-19 18:48:17 +02:00
czaks
1fb362a7c0
fix previous commit
2014-04-18 14:33:50 +02:00
czaks
8e9db69375
post.php: load config earlier
2014-04-18 14:32:05 +02:00
czaks
e08bc5d54d
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
2014-04-12 20:52:42 +02:00
Michael Reiley
677e428a4d
Update copyright years.
2014-04-12 11:12:42 -07:00
czaks
bcb47a1d33
geoip: compatibility fix; this allows to have both versions of geoip loaded
2014-02-19 00:01:40 +01:00
Jano Slota
9dad842c24
Moved the external geoip files to inc/lib/geoip and made the geoip code a bit prettier
2014-02-18 23:50:01 +01:00
Jano Slota
ada45312a4
Use the added GeoIPv6 instead of the PHP plugin. Quite messy.
2014-02-18 23:49:07 +01:00
undido
bfc966e312
Security exploit patched information leak
2014-02-07 04:32:27 -04:00
czaks
d4698a82d1
SECURITY: post data were sent to file post.txt
2014-02-02 17:42:39 +01:00
czaks
8bd99be6f1
fix error on repost blockade: the expression had a bug
2014-01-19 14:42:03 -05:00
czaks
118cd77a4d
fix error on repost blockade: the expression had a bug
2013-12-23 19:01:08 +01:00
czaks
533443ac79
post.php: fix spaces
2013-12-23 18:42:01 +01:00
root
82972927d5
added: nonoko
2013-12-23 17:41:33 +01:00
czaks
f5657caf24
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard into vichan-devel-4.5
...
Conflicts:
inc/config.php
install.php
post.php
stylesheets/style.css
2013-11-11 21:54:35 +01:00
Michael Foster
00f4da3b82
$config['referer_match'] = false to disable
2013-09-23 15:52:59 +10:00
Michael Foster
a9b7f9b1bc
begin implementation of in-built ban appealing
2013-09-21 12:51:23 +10:00
czaks
99a2e1cf3d
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard into vichan-devel-4.5
...
Conflicts:
js/quick-reply.js
2013-09-18 09:00:22 -04:00
Michael Foster
d13f30b39f
js/settings.js: Simple config stuff for javascript extensions
2013-09-18 14:40:39 +10:00
czaks
6cb7eb939e
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard into vichan-devel-4.5
...
Conflicts:
inc/config.php
inc/display.php
inc/mod/pages.php
install.php
js/quick-reply.js
post.php
templates/index.html
2013-09-17 10:43:44 -04:00
Michael Foster
4b45ccc4ee
ajax-post-controls.js
2013-09-16 04:42:13 +10:00
Michael Foster
30fb025eef
;
2013-09-15 20:15:17 +10:00
Michael Foster
00833eeafd
js/ajax.js: post with ajax
2013-09-15 14:03:27 +10:00
Michael Foster
4cd2389655
lol
2013-09-15 05:48:37 +10:00
Michael Foster
32c999346f
Remove $config['url_regex'];
2013-09-15 05:46:08 +10:00
Michael Foster
f309e4037c
Better and faster basic flood prevention, while merging it into $config['filters'].
2013-09-06 23:09:18 +10:00
czaks
069f1def9b
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
install.php
2013-09-01 11:25:19 -04:00
Michael Foster
b51fc38783
Some SQL and indexes improvements
2013-09-01 02:04:42 +10:00
Michael Foster
8d14ef6bf7
lol
2013-08-31 13:33:26 +10:00
czaks
8de81d176c
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/config.php
2013-08-29 07:33:19 -04:00
Michael Foster
a8e3754375
Minor $config['try_smarter'] work
2013-08-29 18:55:25 +10:00
Michael Foster
d7fc5adc22
Performance: Use only one INSERT INTO (with multiple rows) for tracked cites
2013-08-29 12:38:37 +10:00
czaks
8503e65858
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/config.php
inc/functions.php
install.php
stylesheets/dark_roach.css
2013-08-28 12:41:36 -04:00
Michael Foster
5003a692b4
exiftool: Use -overwrite_original. Important bugfix; old images were never being deleted when using exiftool (instead kept as *_original in /tmp)
2013-08-27 08:55:03 +10:00
Michael Foster
319cd2520f
Upload by URL: still use fatal_error_handler() on shutdown
2013-08-27 08:13:23 +10:00
Dan Saunders
09388f6588
Added a post-delete action for themes
...
This would be really useful for themes that focus on posts
2013-08-26 13:35:51 +10:00
Michael Foster
cdeccbb9ba
Uploading files via URL: fix for URL parameters (eg. image.png?id=343543)
2013-08-26 12:13:40 +10:00
czaks
de035f4a7e
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
stylesheets/dark_roach.css
stylesheets/style.css
2013-08-20 18:22:37 -04:00
Michael Foster
e45ffb8592
custom timeouet for curl'ing upload urls
2013-08-19 18:54:10 +10:00
czaks
da1b7d087e
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
install.php
2013-08-18 13:16:31 -04:00
Michael Foster
740b710dd4
chmod(): images don't need +x lol
2013-08-19 01:54:14 +10:00
Michael Foster
154fbf5070
Huge bug: undoImage() was not working at all. This means lots of Tinyboard users probably have lone/permanent images. Working on Tinyboard-Tools script to remove all images/thumbs that don't belong.
2013-08-19 01:07:04 +10:00
Michael Foster
80804b9df6
Bugfix: $config['file_thumb'] being used incorrectly
2013-08-18 20:53:01 +10:00
czaks
bf119b7abd
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
js/post-hover.js
2013-08-17 16:21:40 -04:00
Michael Foster
3a27060503
GeoIP: Ignore country codes that aren't country codes: ap (Asia/Pacific), EU, etc.
2013-08-18 01:06:13 +10:00
czaks
ca565d07c2
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/display.php
2013-08-16 16:06:54 -04:00
Michael Foster
0d45fbc799
Add \n before post modifiers. Add flag alt for country flags.
2013-08-17 03:39:58 +10:00
czaks
146243c473
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/config.php
inc/display.php
inc/functions.php
2013-08-16 10:07:24 -04:00
Michael Foster
a9fe4ea2db
Change flag_country to just flag
2013-08-16 22:12:25 +10:00
Michael Foster
4876a27232
Much better post modifiers: raw HTML, ban messages, etc.
2013-08-16 21:25:56 +10:00
Michael Foster
b666886416
A few modifications:
...
1. Finally, clean up some of the crappy code in inc/display.php; no more extreme clutter. new Thread() and new Post() take an array as the first parameter now.
2. Poster country flags. Currently requires the "geoip" extension.
3. Give post images a classname. This was also long-overdue.
2013-08-16 21:08:01 +10:00
czaks
4f855cf3b3
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/config.php
inc/display.php
inc/functions.php
2013-08-13 14:46:16 -04:00
Michael Foster
60b3cfc539
Upload via URL: Make sure we're not vulnerable to this buffer overflow exploit. http://www.exploit-db.com/exploits/24487/
2013-08-13 00:07:23 +10:00
Michael Foster
6fdbe76f7b
bugfix: sometimes this acts weird
2013-08-12 23:35:27 +10:00
Michael Foster
6a1e8e834b
Fix last commit: add chmod() to fix some permissions derping
2013-08-12 23:06:58 +10:00
Michael Foster
0de0bc6ceb
Optional: Allow uploading by URL
2013-08-12 22:51:46 +10:00
czaks
8534e2cc80
Merge branch 'noko50-new-dev11' of http://github.com/fallenPineapple/Tinyboard
...
Conflicts:
inc/functions.php
2013-08-11 17:49:29 -04:00
czaks
fa9bf536c3
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/config.php
inc/display.php
inc/mod/pages.php
js/catalog-link.js
post.php
templates/banned.html
2013-08-11 09:50:33 -04:00
Michael Foster
5836cd23d2
Critical bug: users could not report OP posts, only replies (thanks to ctrlcctrlv for finding this)
2013-08-11 21:22:25 +10:00
fallenPineapple
a4e97c32ec
noko50 reply fix
2013-08-11 06:29:30 -04:00
fallenPineapple
12ee85beaf
Adds "noko50" (View Last 50 Posts) pages. (Broken Reply)
2013-08-10 17:16:30 -04:00
ctrlcctrlv
52df2bd5fd
Critical bug: users could not report OP posts, only replies
2013-08-09 17:53:23 +00:00
czaks
06d2dafa2a
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
2013-08-04 23:31:53 -04:00
Michael Foster
f1e3c53d8d
exiftool: -q needed twice to suppress warning messages
2013-08-04 23:15:01 -04:00
Michael Foster
c9fe458152
exiftool: -ignoreMinorErrors
2013-08-04 23:05:20 -04:00
Michael Foster
373fb99a7f
Bugfix: exif_read_data() Incorrect APP1 Exif Identifier Code
2013-08-04 23:02:15 -04:00
czaks
7ed01737c7
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
2013-08-04 01:00:23 -04:00
Michael Foster
a2b432cfb0
Some logic fixes. Don't strip exif twice.
2013-08-04 00:54:27 -04:00
Michael Foster
0387ae1b46
Use exiftool to patch bug for now.
2013-08-04 00:48:28 -04:00
czaks
f128811dd3
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
2013-08-03 22:18:46 -04:00
Michael Foster
ac4306555b
Fix for instances with old GraphicsMagick or ImageMagick versions (no -auto-orient).
2013-08-03 22:14:25 -04:00
root
1f5ce14f59
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
2013-08-03 21:49:38 -04:00
Michael Foster
b373b39f44
Bugfix: gm and auto-orient thumbnailing
2013-08-03 21:47:24 -04:00
czaks
d79da75fa9
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
2013-08-03 21:01:26 -04:00
Michael Foster
b67fc7d54e
Only use identify
if we have to
2013-08-03 20:50:37 -04:00
Michael Foster
5300ffadf1
Better image processing. Add support for GraphicsMagick (a fork of ImageMagick) and exiftool
(for stripping EXIF metadata quickly).
2013-08-03 20:34:59 -04:00
czaks
a0855cdcf5
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/config.php
inc/functions.php
templates/generic_page.html
templates/index.html
2013-08-03 19:05:25 -04:00
Michael Foster
a3fbff2259
Update $config['try_smarter']. Should be working now.
2013-08-03 17:42:34 -04:00
Michael Foster
4fce9b63ae
Major config.php cleanup and a few minor misc fixes.
2013-08-02 20:52:58 -04:00
czaks
1ed45ebe9e
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
stylesheets/dark.css
stylesheets/futaba+vichan.css
stylesheets/miku.css
stylesheets/stripes.css
stylesheets/testorange.css
stylesheets/wasabi.css
2013-08-01 23:43:20 -04:00
Michael Foster
40ab2e0c17
Don't redraw image again after correcting image orientation; Correct image orientation with convert+gifsicle too
2013-08-01 21:28:16 -04:00
czaks
168a4d73cc
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
2013-08-01 00:47:33 -04:00
Michael Foster
a052a791b5
Add optional database table prefix (issue #118 ; see issue comments for details)
2013-07-31 22:14:26 -04:00
czaks
83844b5e3e
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/functions.php
2013-07-31 21:03:13 -04:00
Michael Foster
328484bee7
SQL cleanup
2013-07-31 20:51:43 -04:00
czaks
b35ea55763
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
templates/thread.html
2013-07-31 19:25:04 -04:00
Michael Foster
6bbe407e18
Markup modifiers: raw HTML
2013-07-31 19:18:55 -04:00
Michael Foster
6d52c8b428
Markup modifiers. Fix issue #66 (public ban message lost when rebuilding post body)
2013-07-31 18:59:54 -04:00
czaks
c0abd1d851
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
2013-07-31 17:02:30 -04:00
Michael Foster
d692bce686
Fix issue #74 . Note: This bug may break the display of certain filenames prior to upgrade.
2013-07-31 16:34:50 -04:00
czaks
55c7146d88
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/config.php
inc/display.php
inc/functions.php
inc/image.php
js/expand.js
js/hide-threads.js
js/local-time.js
js/smartphone-spoiler.js
templates/header.html
templates/index.html
templates/main.js
templates/page.html
templates/post_reply.html
templates/post_thread.html
templates/thread.html
2013-07-31 14:54:20 -04:00
Michael Foster
8e4c493a4c
Issue #126
2013-07-31 12:05:19 -04:00
czaks
96bcf5dd1e
Merge branch 'master' of https://github.com/savetheinternet/Tinyboard
...
Conflicts:
inc/functions.php
inc/mod/pages.php
install.php
js/expand.js
mod.php
2013-07-31 02:30:44 -04:00
Michael Foster
42cba53887
Allow Unicode in board URIs.
2013-07-31 02:08:55 -04:00