Jump to content

Makoto

Clients
  • Posts

    5,279
  • Joined

  • Last visited

  • Days Won

    32

Reputation Activity

  1. Like
    Makoto reacted to Marc Stridgen in Serious security flaw. (In my opinion)   
    I'm not sure why you believe this is a security flaw. I have actually added the words "In my opinion" so as this is not misleading and alarming to others.
    What this actually would be, is a feature you would like, but its certainly by no means a security flaw. In fact, we actually have items to mitigate these issues, but of course, they depend on being used. You would simply enable 2-factor authentication on your site, which is created to prevent people from accessing others accounts.
    The locked accounts does indeed work, however, if they have the correct password for some reason then indeed they will get in. See my point above on this, which would resolve that issue completely.
    It's also worth noting these are not always bots. If there is a list somewhere that has a password on that someone uses on multiple sites, you wouldn't have to be a bot to simply log in with those details. Again, 2-factor authentication would solve that issue.
    I mention the above, as it depends on it being used, of course. We can prevent many things, and of course the request of such features would be taken into account if you post this up as feedback. But as with 2-factor authentication, it would depend on it being used.
     
  2. Like
    Makoto reacted to Marc Stridgen in Ignored Users >> Ignore Messages only works for new PMs, not for replies to existing PMs   
    Thank you for bringing this issue to our attention! I can confirm this should be further reviewed and I have logged an internal bug report for our development team to investigate and address as necessary, in a future maintenance release.
     
  3. Like
    Makoto got a reaction from AlexJ in How to stop DOS Attacks - 10+ login requests from one IP per second, for hours on end   
    Traffic spikes should never "corrupt" your database. Increases in load can slow the server down, connections flooding and exceeding your MySQL servers configured max allowed connections can cause the website to "crash" and display an error page when they can't connect to the database, running out of memory can cause your server to resort to swap space and slow your system down to a crawl or get to the point where Linux starts forcefully killing processes to free up memory, but none of these scenarios (excluding possibly the last if the MySQL process is forcefully terminated, which is a case where your server is not properly configured in regards to maximum allowed MySQL conenctions and etc.) should result in database tables becoming corrupted.
    This is not normal behavior. There is something wrong with your systems configuration if this is a frequent problem.
    But outside of that, yes, I recommend looking into Cloudflare to help block illegitimate traffic and reduce the load on your website. It's not a solution to whatever is causing your database to become corrupted, but it's a good idea.
    However, your host putting the blame entirely on the software is just factually wrong. If they're trying to suggest it's normal for this to happen, they are absolutely incorrect.
  4. Like
    Makoto got a reaction from Jim M in How to stop DOS Attacks - 10+ login requests from one IP per second, for hours on end   
    Traffic spikes should never "corrupt" your database. Increases in load can slow the server down, connections flooding and exceeding your MySQL servers configured max allowed connections can cause the website to "crash" and display an error page when they can't connect to the database, running out of memory can cause your server to resort to swap space and slow your system down to a crawl or get to the point where Linux starts forcefully killing processes to free up memory, but none of these scenarios (excluding possibly the last if the MySQL process is forcefully terminated, which is a case where your server is not properly configured in regards to maximum allowed MySQL conenctions and etc.) should result in database tables becoming corrupted.
    This is not normal behavior. There is something wrong with your systems configuration if this is a frequent problem.
    But outside of that, yes, I recommend looking into Cloudflare to help block illegitimate traffic and reduce the load on your website. It's not a solution to whatever is causing your database to become corrupted, but it's a good idea.
    However, your host putting the blame entirely on the software is just factually wrong. If they're trying to suggest it's normal for this to happen, they are absolutely incorrect.
  5. Like
    Makoto got a reaction from Joel R in How to stop DOS Attacks - 10+ login requests from one IP per second, for hours on end   
    Traffic spikes should never "corrupt" your database. Increases in load can slow the server down, connections flooding and exceeding your MySQL servers configured max allowed connections can cause the website to "crash" and display an error page when they can't connect to the database, running out of memory can cause your server to resort to swap space and slow your system down to a crawl or get to the point where Linux starts forcefully killing processes to free up memory, but none of these scenarios (excluding possibly the last if the MySQL process is forcefully terminated, which is a case where your server is not properly configured in regards to maximum allowed MySQL conenctions and etc.) should result in database tables becoming corrupted.
    This is not normal behavior. There is something wrong with your systems configuration if this is a frequent problem.
    But outside of that, yes, I recommend looking into Cloudflare to help block illegitimate traffic and reduce the load on your website. It's not a solution to whatever is causing your database to become corrupted, but it's a good idea.
    However, your host putting the blame entirely on the software is just factually wrong. If they're trying to suggest it's normal for this to happen, they are absolutely incorrect.
  6. Like
    Makoto got a reaction from FanClub Mike in Introducing a fresh new vision for Invision Community 5   
    I am honestly blown away by how good all of this looks. I honestly wasn't expecting such a massive leap forward in design with v5, so this is all quite a wonderful surprise to me.
    @Ehren and you all have done an amazing job with all of this.
    Modern desktop resolutions have gotten so large now that we have such a massive amount of wasted real estate on the sides, even with widgets and everything else filling up some of that space. Migrating to a sidebar layout to capitalize on this just makes a ton of sense, and also makes navigating around seamless.
    The new mobile layout looks wonderful too, along with the new forum layouts and everything else. It has been a long time since I've been this genuinely excited about a new IPS release.
  7. Agree
    Makoto got a reaction from ekforum in Introducing a fresh new vision for Invision Community 5   
    I am honestly blown away by how good all of this looks. I honestly wasn't expecting such a massive leap forward in design with v5, so this is all quite a wonderful surprise to me.
    @Ehren and you all have done an amazing job with all of this.
    Modern desktop resolutions have gotten so large now that we have such a massive amount of wasted real estate on the sides, even with widgets and everything else filling up some of that space. Migrating to a sidebar layout to capitalize on this just makes a ton of sense, and also makes navigating around seamless.
    The new mobile layout looks wonderful too, along with the new forum layouts and everything else. It has been a long time since I've been this genuinely excited about a new IPS release.
  8. Thanks
    Makoto got a reaction from Ehren in Introducing a fresh new vision for Invision Community 5   
    I am honestly blown away by how good all of this looks. I honestly wasn't expecting such a massive leap forward in design with v5, so this is all quite a wonderful surprise to me.
    @Ehren and you all have done an amazing job with all of this.
    Modern desktop resolutions have gotten so large now that we have such a massive amount of wasted real estate on the sides, even with widgets and everything else filling up some of that space. Migrating to a sidebar layout to capitalize on this just makes a ton of sense, and also makes navigating around seamless.
    The new mobile layout looks wonderful too, along with the new forum layouts and everything else. It has been a long time since I've been this genuinely excited about a new IPS release.
  9. Like
    Makoto reacted to Ehren in Introducing a fresh new vision for Invision Community 5   
    Welcome to Invision Community 5!
    Over the coming weeks, we'll be exploring a bunch of new features and improvements coming to our user interface including our brand new theme editor, a new mobile UI, dark mode and performance improvements thanks to a reduction in both JavaScript and CSS. To kick off this series, let’s take a closer look at the new sidebar layout and new view modes for the forum index and topic pages.
    Sidebar Layout
    Traditionally, Invision Community has shipped with a horizontal header and navigation bar at the top of the page, which is still available in version 5. We're introducing a brand new (and optional) sidebar layout, which can be enabled or disabled easily from within your theme settings. The sidebar not only provides convenient access to your applications, activity streams and search bar, but you can now add links to nodes for even easier access to popular or commonly used areas of your community. For example - a category from your forum, an album from the Gallery, or a product group from Commerce.
    Sidebar-zoom.mp4
    Forum Index: Feed view
    One of our goals for version 5 was to re-imagine new ways for your visitors to consume content, and the sidebar layout is just one of our solutions. Table view has been the typical way of displaying forums, providing visitors with a simple summary of the most recently active topic. Grid mode introduced cover photos to forums and is a great way to make your page more visually engaging, while fluid view allows visitors to filter through a list of topics to easily focus on multiple areas of the community.
    Joining these view modes in version 5 is our new Feed view. Optional cover photos and featured forum colours allow you to personalise each forum, and a list of recently active topics with snippets of the most recent reply allow you to easily see what each forum is focusing on at a glance. The topic list drops below the cover photo and converts to a scrollable list on small devices. It's our fresh take on content display, and we can’t wait to hear your feedback!

     
    Topic pages: Compact view
    In addition, Invision Community 5 also introduces a new, compact layout option for topics. We wanted to create a layout which placed focus on your content while still keeping all of the authors profile information easily accessible within a mini profile. Stats, rank, badges, reputation points and more can be found by tapping the icon at the top of every post. The mini profile strip has also been added to other areas of the software too, such as comments and reviews in applications like Gallery and Blogs, and will appear on the mobile layout when the traditional "table view" is used in topics.
    Switching between the new compact view and the author sidebar view takes just seconds giving you complete control over your community.
    Mini profile.mp4
     
    As part of this view, you also have the choice to feature/pin the original post to the top of every page, making it a breeze for your visitors to easily understand the context of replies without navigating back to page 1. Pinned posts have a slightly larger font-size to distinguish them from replies, and we've thoughtfully truncated them on pages beyond the first to keep scrolling to a minimum.

     
    The new sidebar layout and view modes offer a fresh and innovative approach to navigating and interacting with your community. We’re really keen to hear your thoughts on these new views and whether you’ll be unleashing them on your own sites! We appreciate that no two sites are the same, and those who are a fan of the classic header look will benefit from quick styling tools and a visual way to re-arrange the header elements which we’ll cover in a later blog.
    We’re looking forward to showcasing a whole bunch of new features over the coming weeks - so stay tuned, and we’ll see you then!
     

    View full blog entry
  10. Thanks
    Makoto reacted to Marc Stridgen in "Bypass automatic moderation" doesn't bypass new file version uploads   
    Thank you for bringing this issue to our attention! I can confirm this should be further reviewed and I have logged an internal bug report for our development team to investigate and address as necessary, in a future maintenance release.
     
  11. Agree
    Makoto got a reaction from teraßyte in "Bypass automatic moderation" doesn't bypass new file version uploads   
    If you give a member group the Bypass automatic moderation permission, they can upload files to a category with the Files must be approved? moderation setting enabled without being moderated. However, they cannot bypass the New versions must be approved? moderation setting (i.e. they still see a notice that their new version submissions need approval, when they should be able to bypass this moderation requirement).
  12. Like
    Makoto got a reaction from AlexJ in New Spam Prevention Features   
    I definitely look forward to seeing how it performs. I was planning on just giving one of the paid services a try recently, but if you're able to provide this as part of your included spam defense systems that is a great value for license holders.
  13. Like
    Makoto reacted to Matt in Marketplace Closure   
    v5 is a significant step forward for UI, discovery, noise versus signal and brand matching. Change is hard but it is kind of inevitable.
    If nothing changed, then we'd still be using this:

    And while you could absolutely run a successful community on that product even now, the chances of attracting new members would be low given the expectations modern audiences have for UI and ease of use.
  14. Like
    Makoto reacted to Marc Stridgen in Marketplace Closure   
    I feel you may want to re-read the above. There are no claims anyone has done such as thing that I have read in this topic. Someone has asked about what security precautions they can use on their site when using items that are developed by someone other than Invision.  I'm sure as a developer yourself, you appreciate the importance of someone thinking about the security of their site?
  15. Like
    Makoto got a reaction from Marc Stridgen in Can i get the older version of the invision community version 3.4.2 files?   
    I would be happy to help if you'd like.  I have offered numerous upgrade services to clients over the years. 
    You can send me a message here if you'd like to discuss the details. 
    I'm currently on vacation but I will be fully available again Monday. 
  16. Like
    Makoto reacted to Charles in Marketplace Closure   
    Luckily we are the experts in seeing usage trends 😉
    Trust me. You have no idea how many problematic things we prevented from being published in the Marketplace over the years.
    PSA: you might want to use multi-quote when doing many replies 🙂 
  17. Like
    Makoto reacted to WP V0RT3X in Marketplace Closure   
    I think this is the best decision IPS has made in years. The only thing customers will lose is some comfort, but the bottom line is that it is the best for all. 
    What you are suggesting is that developers have to release 2 versions. Means a lot more work and then have to pay to release a free version. Why should someone do that?
    I promise you nothing will be lost, there will be even more. More applications, more translations... more freedom. Not on this website, just on another one.
  18. Like
    Makoto got a reaction from Ryan Ashbrook in New Spam Prevention Features   
    I definitely look forward to seeing how it performs. I was planning on just giving one of the paid services a try recently, but if you're able to provide this as part of your included spam defense systems that is a great value for license holders.
  19. Like
    Makoto got a reaction from Cedric V in New Spam Prevention Features   
    I definitely look forward to seeing how it performs. I was planning on just giving one of the paid services a try recently, but if you're able to provide this as part of your included spam defense systems that is a great value for license holders.
  20. Thanks
    Makoto got a reaction from Matt in New Spam Prevention Features   
    I definitely look forward to seeing how it performs. I was planning on just giving one of the paid services a try recently, but if you're able to provide this as part of your included spam defense systems that is a great value for license holders.
  21. Thanks
    Makoto reacted to Matt in New Spam Prevention Features   
    We don't want to say too much for obvious reasons, but we use a mixture of sources to determine spam accounts and disposable email addresses.
  22. Like
    Makoto reacted to Matt in Marketplace Closure   
    If I was a new developer trying to gain trust, I'd spend some time in the community being helpful and getting to know people. You can quite quickly gain trust this way and then start to offer your services and products.
  23. Thanks
    Makoto got a reaction from LiveG in Site is down after php upgrade   
    Please check your server's PHP or web server error logs and paste what is being logged there.
    If you don't know how to access this information, you will need to contact your hosting provider.
  24. Thanks
    Makoto got a reaction from Como in Account Deactivation   
    This update took a bit longer than I anticipated, as I forgot there's a lot of code that needed to be updated to meet the new marketplace policies before an update can be pushed through, but hopefully the new version should be added shortly.
    The new version will work as a drop-in replacement for the current Account Deletion feature in IPS. All the logic for this will be re-routed to the Account Deactivation application, and a new button in the Security page will be added for standard account deactivation as well.
    All legacy URL's to the old account deactivation pages will still function, however, just in-case you have these linked anywhere else within your community.
    This release will just focus on bug fixes and updating to ensure compatibility. I'm planning to still add some feature updates in a future release, such as adding the ability to either restrict or require moderator approval before users with active warnings can request to have their accounts deleted.
    This way users can't simply delete and re-register an account any time they get in trouble to mitigate any penalties they have received.
    I might also add an option to simply add the users e-mail to the sites banlist if they request an account deletion with active penalties.
  25. Like
    Makoto got a reaction from GoGators in Radical Tags   
    This is a bug in the current release, it can be fixed by rebuilding the search index but should be fixed in an updated release.
    Regarding converting prefixed to tags, there is a function to convert tags to prefixes but I'm not sure if you can easily convert prefixes to regular tags at the moment. I'll see if that is something I can add.
×
×
  • Create New...