Like I said before, I think it's a better policy to assume that people don't want images.
From a pure usability and UX standpoint, the best policy would be to assume that people DO want images, perhaps clickable thumbnails that show the full image in a lightbox. On the other hand, this is a privately owned website, and the owners are free to do as they please. As for dealing with security issues (cookie stuffing and CSRF), simply host all images locally and have stringent checks to validate them as clean image files. That's a no-brainer for me. EDIT: IMO, sig images are a distraction to useful discussion, but embedded images in posts can be very helpful to discussion.
|
|
|
Can you please whitelist me so I can send personal messages? I'm having a problem with a mining pool and the only contact I have for the admin is via this forum.
What mining pool?
|
|
|
Not too worried about the code. But an audit after release would be great.
No, but I'm anxious to see it! Not a big deal though, I can wait.
|
|
|
Tradehill and MtGox are not the only exchanges out there.
|
|
|
This would make it super simple to setup a mining farm.
I assume there is multi-GPU support.
I hardly think Javascript & WebCL would be more efficient than C and OpenCL.
|
|
|
Most of what casascius said would be legal (in most places). And I think he has just touched on the tip of the iceberg.
|
|
|
What is the status of this proposal? It sounds interesting...
|
|
|
Release a fork of cgminer which supports RPC calls to modify parameters and get stats for use in headless hashing farms and I will give you a 20 BTC bounty. That's a 4000% increase in your net wealth.
If you can't do that well the general idea applies. Do something which someone else considers valuable.
Out of curiosity, what parameters would you want to modify? (all of them?) and what stats would you want to retrieve?
|
|
|
I'd enjoy auditing the code once it is released. Or if you want me to start auditing it now, before open sourcing it, I'd be happy to do so.
|
|
|
Why I use the pool that I use: (all points SPECIFIC TO ME, YMMV)
Out of curiosity, what pool do you use?
|
|
|
I'm completely blocked from accessing it on my end. Weird. See if you can reach it through a proxy. I can reach it fine.
|
|
|
Okay, I just wanted to make sure I understood how it works. Thanks.
|
|
|
Finding Bitcoin blocks is a lottery.
I'm still in learning mode here. So this means that technically, I could turn on gen=1 in bitcoin.conf so the client tries to generate bitcoins, and if I were extremely lucky, there's a tiny chance I could solve a block 5 minutes later, right?
|
|
|
Yes, hosting the images is not worth the trouble. Definitely don't do that. But there are many ways you can prevent the linking of dynamic images, and thus prevent cookie stuffing. That is impossible. The only way you can prevent people from linking dynamic images without local hosting is by whitelisting image upload sites where you trust that it is impossible to upload dynamic images. All that does is warn the user after the fact. By then, it's too late. If the attack is cookie stuffing, then you clear your browser cookies-- problem solved. If the attack is CSRF, then you're screwed, BUT, if there is an application/site that is vulnerable to CSRF, that's their problem, not this forum's problem.
|
|
|
Well I disagree less is more.
I actually agree with you 100% -- less is more. But it still has to be well-designed and intuitive. Google and Apple both accomplish this nicely. Edit: Having a search box in the *header* that changes depending on context and doesn't notify the user about it is not intuitive. Being in the header implies that it is site-wide, and nowhere is the user clued in that their search was magically limited (when they didn't expect it). These problems would all be fixed if there was a notice on the search results: * "Searching in thread X, search entire board" * "Searching in forum X, search entire board" clicking the link would run the search again, without the limit.
|
|
|
Animated avatars are the worst. Also, I love how strong of an opinion everyone has at the moment when this topic has come up so many times yet I don't think I have ever seen this much activity about it.
pot, kettle.
|
|
|
Ultimately one will need to ban avatars also. Avatar will be the standard promotional spot if others aren't available.
BTW. I am auctioning off my Avatar for 2 BTC for 30 days. A steal if you notice how many posts I make. Hurry with inability to use banners this space will go fast.
Note: I am only semi-kidding.
You're kidding, but that has been going on at webmaster/seo forums for years.
|
|
|
Yeah, the search function only works for whatever subsection you are in, so if it's a thread, it searches the thread, or if you are on a sub-board, it'll only search that.
*puts on UX design hat* 1. Not very discoverable 2. Hinders searching whole site (you have to go back to the index to search the whole site?) 3. Many users may not realize their search had been limited by thread/forum and give up searching Not too impressive, I must say. Search should be a drop down with two search boxes, one to search everywhere, and a context-sensitive search box labeled "search thread" or "search forum" depending on where you are. </offtopic>
|
|
|
|