| Author |
Message |
Ghost
Newbie
Joined: Jun 18, 2006
Posts: 5
|
 Posted:
Sun Feb 08, 2009 5:35 am |
   
|
I am currently establishing a site in which we plan to test and reconfigure the nuke forum mods install text files. Our attempt is to merely establish some form of validation in both functionality and cleanliness. I do have rather one concern...wasting our time. I think we can serve the community best when we update these mods using today's secure measures. No one within our team are anywhere php guru's, however, we can port 99% of what we get our hands on. I come here asking something unusual yet necessary...hoping to not be asking for the flood gates to burst open.
What are some common things I can watch for and alter regarding vulnerabilities without having to rewrite the entire mod?
Any and all assistance would be greatly appreciated.
Thank you,
Ghost |
| |
|
|
|
Guardian
Site Admin
Joined: Jan 06, 2006
Posts: 4465
Location: Vsetin, Czech Republic
|
| Posted:
Tue Feb 10, 2009 5:20 pm |
|
Hi Ghost and welcome.
First off, let me just say that I do not want this to sound as though I am demeaning your efforts as I'm not.
The whole aspect of security is so far ranging and encompassing that it is really impossible to even know where to start guiding you.
I could give you some idea's but without taking a lot of other things into consideration, you might accidentally create an exposure somewhere else and in any event phpBB is not really my area of expertise (if I even have one lol).
All I can really say is that if you are going to port stuff for *nuke concentrate on mods that are frequently asked for and check some of the security sites like Secunia to see if a vulnerability has already been reported for that particular mod.
You might also want to think about the fact that phpNuke is essentially a dead project as is phpBB 2.x
If you have a team who work well, you may want to think about integrating phpBB into *nuke as I think that is really the way forward. |
_________________
TPD |
|
 
|
|
Ghost
Newbie
Joined: Jun 18, 2006
Posts: 5
|
| Posted:
Mon Feb 16, 2009 10:01 pm |
|
Thank you Guardian,
My apologies for such a late response. I understand your comments, however we are actually leaps in front of you in regards to moving beyond nuke. However instead of integrating phpBB into Nuke, we are instead integrating Nuke into phpBB...to a point.
Thank you for your help.
Ghost |
| |
|
|
|
|
Guardian
Site Admin
Joined: Jan 06, 2006
Posts: 4465
Location: Vsetin, Czech Republic
|
| Posted:
Mon Feb 16, 2009 10:30 pm |
|
No problem. The RavenNuke (tm) has already worked on seperating the phpBB forum part so at some point in the future it will be easier to plug-in other forum systems.
Good luck with your endevours, keep us up to date as it is always interesting to see what others are doing in the community. |
_________________
TPD |
|
|
|
|
|
|
