kalin

Will we have to translate version 5 from scratch?

Will we have to translate version 5 from scratch?

3 minutes ago, Marc Stridgen said:

I'm not sure why you believe this is a security flaw. I have actually added the words "In my opinion" so as this is not misleading and alarming to others.

What this actually would be, is a feature you would like, but its certainly by no means a security flaw. In fact, we actually have items to mitigate these issues, but of course, they depend on being used. You would simply enable 2-factor authentication on your site, which is created to prevent people from accessing others accounts.

The locked accounts does indeed work, however, if they have the correct password for some reason then indeed they will get in. See my point above on this, which would resolve that issue completely.

It's also worth noting these are not always bots. If there is a list somewhere that has a password on that someone uses on multiple sites, you wouldn't have to be a bot to simply log in with those details. Again, 2-factor authentication would solve that issue.

I mention the above, as it depends on it being used, of course. We can prevent many things, and of course the request of such features would be taken into account if you post this up as feedback. But as with 2-factor authentication, it would depend on it being used.

 

I'm going to send you a private message about slavery because there is information that is not to be published here

Why won't and can't enable the login form captcha? We recently fell victim to a brute force attack. Someone purchased leaked emails and passwords from somewhere. And launched an attack to check if there is a registration on our site with the same email and password. Why is there no option to enable captcha for the standard login form? Lock accounts doesn't help. The email and password verification request is just one.

11 hours ago, media said:

@Adriano Faria fixed my problem...

Thank you, thank you thank you....

Can you explain how you fixed it?

I'm interested too

Same here

I just don't know why even though the app is stopped it prevents other things from working. And when I delete it from the server, then it stops another task with an error that the application is missing

In the end, I can neither delete it completely nor leave it disabled 

The problem was in the classifieds app, even though it's turned off. I deleted the folder from the server /applications/classifieds and the problem is fixed.

1 hour ago, Marc Stridgen said:

Something is failing with an internal server error. Please could you check your server error logs for the corresponding error?

I sent you the error in a private message

3 minutes ago, Giray said:

Not sure if I'm the only one, but getting a white screen of death with the current version of Classifieds (on 4.7.3). Only two of my apps are still doing it and Classifieds System, I believe, is indeed one of them.

Thoughts?

it's the same here

The author of the application has not been online here for 15 days. Тhis app will not have new versions soon

I updated again all access details on file

Tried stopping all apps and running it again same thing.

I have updated my login information

• Application/Plugin
  System
• Task
  queue
  Runs background queue tasks.
• Last Run
  Never

   

   

  When I try to launch it manually, a blank page appears

12 hours ago, Adriano Faria said:

True. I started to use 4.7 in Beta 5 because I had to disable a item in the constants.php; bug is still there, btw.

Will there be a compatible version soon for Classifieds System? Thanks, 

Regards.

After update on ipb 4.7.2,  Videos is disabled and locked.

Quote

We are currently in the process of migrating our platform from PHP7 to PHP8 in order to provide you with the greatest level of performance and security. We've identified and disabled one or more Applications or Plugins currently installed on your site which contain PHP8 incompatible code. To re-enable, you will have to upgrade to a PHP8 compatible version. Refer to the AdminCP Support page for more info.

After update on ipb 4.7.2,  Classifieds is disabled and locked.

Quote

We are currently in the process of migrating our platform from PHP7 to PHP8 in order to provide you with the greatest level of performance and security. We've identified and disabled one or more Applications or Plugins currently installed on your site which contain PHP8 incompatible code. To re-enable, you will have to upgrade to a PHP8 compatible version. Refer to the AdminCP Support page for more info.

1 hour ago, Marc Stridgen said:

I suspect its not actually set in your conf_global.php file there. Could you please confirm you have this line

 

'sql_utf8mb4' => true

It is already set when the conversion is done:

$INFO['sql_utf8mb4'] = true;

14 minutes ago, Jim M said:

It would be advised when converting to UTF8mb4 to always use our conversion tool, as it does seem there were a few issues here.

The conversion was done many years ago with your admin panel tool

We fixed it, turned it off strict mode

No, sorry,

mysql> show create table ibf_core_message_topics\G; *********************** 1. row *********************** Table: ibf_core_message_topics Create Table: CREATE TABLE ibf_core_message_topics ( mt_id int NOT NULL AUTO_INCREMENT, mt_date int NOT NULL DEFAULT '0', mt_title varchar(255) COLLATE utf8mb4_unicode_ci NOT NULL DEFAULT '', mt_hasattach smallint NOT NULL DEFAULT '0', mt_starter_id int NOT NULL DEFAULT '0', mt_start_time int NOT NULL DEFAULT '0', mt_last_post_time int NOT NULL DEFAULT '0', mt_to_count int NOT NULL DEFAULT '0', mt_to_member_id int NOT NULL DEFAULT '0', mt_replies int NOT NULL DEFAULT '0', mt_first_msg_id int NOT NULL DEFAULT '0', mt_is_draft int NOT NULL DEFAULT '0', mt_is_deleted int NOT NULL DEFAULT '0', mt_is_system int NOT NULL DEFAULT '0', PRIMARY KEY (mt_id), KEY mt_starter_id (mt_starter_id), KEY mt_date (mt_date), FULLTEXT KEY mt_title (mt_title) ) ENGINE=InnoDB AUTO_INCREMENT=301023 DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_unicode_ci 1 row in set (0.00 sec)

During the update

We run the SQL query:

ALTER TABLE `ibf_core_message_topics` ADD COLUMN `mt_alert` BIGINT UNSIGNED NULL ;

And we get an error

ERROR 1366 (HY000): Incorrect string value: '\xED\xA0\xBD\xED\xB8\x89...' for column 'mt_title' at row 238578
 

They register every day, this has been going on for several months now. We moderate the first posts, but they understand and their first posts are normal and then they start again. We have no way of knowing who they are in the beginning. They use different IP addresses. We have started approving registrations by an administrator in the evening and we turn it off every morning, but that's how normal users suffer. An administrator cannot be 24/7 in the forum to monitor such a thing. I think you should consider such an option. In previous versions there was one. Today we are, tomorrow there will be other forums.

They add text. Thousands of lines with the same text. Spam protections are included. But they make a normal registration. These are 1-2 people who do it on purpose to slow down the site. That's how they attack us.

I can't see any setting to adjust allowed post length (size).
Am I overlooking something?

Spammers post many posts of 5-10 MB and the forum opens very slowly until I delete them.

Does anyone look at the problems here: 

https://github.com/netwaretcs/Classifieds/issues/38