|
lemfuture (OP)
|
 |
February 18, 2014, 04:34:21 PM |
|
thanks  |
1ADLcfwTofFXb95pKhebpeRkJ4WTWsvQXB
|
|
|
|
amitrwt
|
|
February 18, 2014, 05:02:09 PM |
|
thanks Yeah thinking about same i think we'll need to achieve some kind of membership status. |
|
|
|
|
rohnearner
|
|
February 18, 2014, 05:06:21 PM |
|
thanks That feature is disabled by the administration i think, because someone told me that it was the reason of forum getting hacked some time ago correct me if i'm wrong . |
|
|
|
|
Sonny
|
|
February 18, 2014, 05:09:14 PM |
|
thanks That feature is disabled by the administration i think, because someone told me that it was the reason of forum getting hacked some time ago correct me if i'm wrong . Yup, you are right. The feature is disabled since Oct 2013. FYR: https://bitcointalk.org/index.php?topic=306878.0 |
|
|
|
|
|
Kiki112
|
|
February 18, 2014, 05:12:46 PM |
|
you can't because the forums have been hacked and they haven't fixed it yet..
|
|
|
|
|
Sonny
|
|
February 18, 2014, 05:18:56 PM |
|
you can't because the forums have been hacked and they haven't fixed it yet..
If you read the linked thread in my previous post, you will know that the avatar indeed has nothing to do with the hack at all... It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
|
|
|
|
|
|
amitrwt
|
|
February 18, 2014, 05:28:53 PM |
|
you can't because the forums have been hacked and they haven't fixed it yet..
If you read the linked thread in my previous post, you will know that the avatar indeed has nothing to do with the hack at all... It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
ok now we are not going to argue about what happened back then , the point is that the feature is disabled and admin will notify whenever it'll be back..! so till then " NO AVATAR " |
|
|
|
|
Sonny
|
|
February 18, 2014, 05:37:36 PM |
|
you can't because the forums have been hacked and they haven't fixed it yet..
If you read the linked thread in my previous post, you will know that the avatar indeed has nothing to do with the hack at all... It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
ok now we are not going to argue about what happened back then , the point is that the feature is disabled and admin will notify whenever it'll be back..! so till then " NO AVATAR " Indeed, a new forum software is being developed, and the avatar will not be back until the new software is ready. You may find some info here. https://bitcointalk.org/index.php?topic=451893.0 and https://bitcointalk.org/index.php?topic=455867.0Peace |
|
|
|
|
fighter
Newbie
 Offline
Activity: 28
Merit: 0
|
|
February 18, 2014, 06:12:01 PM |
|
thanks That feature is disabled by the administration i think, because someone told me that it was the reason of forum getting hacked some time ago correct me if i'm wrong . How can that be possible? Learn something new everyday. |
|
|
|
|
|
Sonny
|
|
February 18, 2014, 06:43:11 PM |
|
thanks That feature is disabled by the administration i think, because someone told me that it was the reason of forum getting hacked some time ago correct me if i'm wrong . How can that be possible? If you mean how the feature is disabled by theymos, yes it is possible. If you mean how the forum was hacked with avatar, please check this thread. https://bitcointalk.org/index.php?topic=306878.0It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
|
|
|
|
|
guybrushthreepwood
Legendary
Offline
Activity: 1232
Merit: 1195
|
|
February 18, 2014, 06:50:56 PM |
|
thanks That feature is disabled by the administration i think, because someone told me that it was the reason of forum getting hacked some time ago correct me if i'm wrong . How can that be possible? If you mean how the feature is disabled by theymos, yes it is possible. If you mean how the forum was hacked with avatar, please check this thread. https://bitcointalk.org/index.php?topic=306878.0It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
So if it wasn't that then why haven't they reinstated them? |
|
|
|
|
|
Kiki112
|
|
February 18, 2014, 07:36:20 PM |
|
thanks That feature is disabled by the administration i think, because someone told me that it was the reason of forum getting hacked some time ago correct me if i'm wrong . How can that be possible? If you mean how the feature is disabled by theymos, yes it is possible. If you mean how the forum was hacked with avatar, please check this thread. https://bitcointalk.org/index.php?topic=306878.0It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
So if it wasn't that then why haven't they reinstated them? HA! I said it was a hack attack  |
|
|
|
fighter
Newbie
Offline
Activity: 28
Merit: 0
|
|
February 18, 2014, 07:39:05 PM |
|
thanks That feature is disabled by the administration i think, because someone told me that it was the reason of forum getting hacked some time ago correct me if i'm wrong . How can that be possible? If you mean how the feature is disabled by theymos, yes it is possible. If you mean how the forum was hacked with avatar, please check this thread. https://bitcointalk.org/index.php?topic=306878.0It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
Thanks, I meant the latter, but I like your humor. |
|
|
|
|
guybrushthreepwood
Legendary
Offline
Activity: 1232
Merit: 1195
|
|
February 18, 2014, 07:40:34 PM |
|
thanks That feature is disabled by the administration i think, because someone told me that it was the reason of forum getting hacked some time ago correct me if i'm wrong . How can that be possible? If you mean how the feature is disabled by theymos, yes it is possible. If you mean how the forum was hacked with avatar, please check this thread. https://bitcointalk.org/index.php?topic=306878.0It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
Thanks, I meant the latter, but I like your humor. What humour? |
|
|
|
|
|
amitrwt
|
|
February 18, 2014, 07:43:22 PM |
|
you can't because the forums have been hacked and they haven't fixed it yet..
If you read the linked thread in my previous post, you will know that the avatar indeed has nothing to do with the hack at all... It was initially suspected by many that the attack was done by exploiting a flaw in SMF which allows you to upload any file to the user avatars directory, and then using a misconfiguration in nginx to execute this file as a PHP script. However, this attack method seems impossible if PHP's security.limit_extensions is set.
ok now we are not going to argue about what happened back then , the point is that the feature is disabled and admin will notify whenever it'll be back..! so till then " NO AVATAR " Indeed, a new forum software is being developed, and the avatar will not be back until the new software is ready. You may find some info here. https://bitcointalk.org/index.php?topic=451893.0 and https://bitcointalk.org/index.php?topic=455867.0Peace I don't think members here are in mood of peace ..! they want to argue let them do that, |
|
|
|
MsCollec
Legendary
Offline
Activity: 1400
Merit: 1000
|
|
February 18, 2014, 07:45:15 PM |
|
you cant change it either.I'm stuck with WDC  |
|
|
|
|
|
rohnearner
|
|
February 18, 2014, 07:47:46 PM |
|
you cant change it either.I'm stuck with WDC haha now that is not the situation you want yourself in..! get well soon [to you avatar] |
|
|
|
|
Baitty
|
|
February 18, 2014, 09:19:10 PM |
|
Think I read they don't plan on enabling it until the new software is completed and its 100% secure.
|
Currently held as collateral by monbux
|
|
|
|
techgeek
|
|
February 18, 2014, 10:03:10 PM |
|
I dont think this feature will ever come back any time soon. Ever since the hack of this forum awhile back.
|
|
|
|
alani123
Legendary
Offline
Activity: 2590
Merit: 1512
|
|
February 18, 2014, 10:04:09 PM |
|
Pro tip: You can't.
Forum satff said that a software update is coming up somewhat soon so they won't bbother to update the current one.
|
|
Duelbits | ██
██
██
██
██
██
██
██
██
██
██
██
██ | | TRY OUR UNIQUE GAMES!
◥ DICE ◥ MINES ◥ PLINKO ◥ DUEL POKER ◥ DICE DUELS | | | | █▀▀
█
█
█
█
█
█
█
█
█
█
█
█▄▄ |
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀ |
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀ |
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀ |
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀ |
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀
███
▀▀▀ | | ▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
KENONEW
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄ | ▀▀█
█
█
█
█
█
█
█
█
█
█
█
▄▄█ | | 10,000x
MULTIPLIER | | ██
██
██
██
██
██
██
██
██
██
██
██
██ | | ██
██
██
██
██
██
██
██
██
██
██
██
██ |
[/tabl |
|
|
|
