• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

non-Anandtech Avatars

Status
Not open for further replies.
Eureka

Eureka

Diamond Member
What's with all the hubbub over non-Anandtech avatars? I haven't seen anyone with any... I don't seen an option to use one anyway? Are people somehow glitching the forums to have non-Anandtech avatars?

Also... why aren't we allowed to have personal avatars here?

----
Moved from OT
AnandTech Moderator Evadman
 
Fusetalk is a fucking abortion of code and contains exploitable contained XSS capable attack vectors.

There's a thread on it in FI, though I wouldn't browse on AT without noscript installed if I were you. They don't have anyone on board that seems all that overly concerned with the problems.
 
Sounds like they're just covering up the problem with their "anyone using non-standard avatars will be banned" announcement. What if someone has (something that appears to be) a standard avatar, but the profile still contains code inducing the issue that results in a potential XSS attack?
 
Originally posted by: Kadarin
Sounds like they're just covering up the problem with their "anyone using non-standard avatars will be banned" announcement. What if someone has (something that appears to be) a standard avatar, but the profile still contains code inducing the issue that results in a potential XSS attack?
Click to expand...

bingo

Originally posted by: Platypus
Fusetalk is a fucking abortion of code and contains exploitable contained XSS capable attack vectors.

There's a thread on it in FI, though I wouldn't browse on AT without noscript installed if I were you. They don't have anyone on board that seems all that overly concerned with the problems.
Click to expand...

and this. although some have made it sound like switching the forums is a big objective...weve been hearing about it forever without any real results. they could have switched to VB long ago, frozen these for archival purposes and just tried to convert the FT stuff to VB.
 
Originally posted by: Kadarin
Sounds like they're just covering up the problem with their "anyone using non-standard avatars will be banned" announcement. What if someone has (something that appears to be) a standard avatar, but the profile still contains code inducing the issue that results in a potential XSS attack?
Click to expand...

Don't worry, they 'take security very seriously' lol
 
Fusetalk's poor coding feels like entrapment to me. If you bother to google for 5 minutes, you'll find an exploit to take over the forum (remember loke?). But if you do, you'll get permabanned. So even though there are exploits to this terrible piece of crap software, the developers don't wanna fix it, but the users aren't allowed to change anything using the exploits are risk getting banned. Pretty fucked up right? When are we switching over to vBB like the other 90% of the internet forums?
 
Originally posted by: xSauronx
Originally posted by: Kadarin
Sounds like they're just covering up the problem with their "anyone using non-standard avatars will be banned" announcement. What if someone has (something that appears to be) a standard avatar, but the profile still contains code inducing the issue that results in a potential XSS attack?
Click to expand...

bingo

Originally posted by: Platypus
Fusetalk is a fucking abortion of code and contains exploitable contained XSS capable attack vectors.

There's a thread on it in FI, though I wouldn't browse on AT without noscript installed if I were you. They don't have anyone on board that seems all that overly concerned with the problems.
Click to expand...

and this. although some have made it sound like switching the forums is a big objective...weve been hearing about it forever without any real results. they could have switched to VB long ago, frozen these for archival purposes and just tried to convert the FT stuff to VB.
Click to expand...

Yeah, I don't see what the real problem is with just starting over on a new DB. Great, we "lose" some archived info. Just leave up a read-only copy of Fusetalk for now. That'll work and we can move away from this fucking piece of shit. Instead it seems like they're constantly inventing new reasons why a migration is impossible.

I just don't see it. The most important thing is to get the usernames ported, and all you really need for that is the username field, the email field, and the md5-encoded password. Is it really any more complicated than that?
 
Now the excuse is that there are tons of great new features that we'll all be blown away with.

The only thing that should be blown away are the servers hosting this absolute joke of an application and they should be reinstalled with something that doesn't contain such bush league code. It's not that fucking complicated to make the switch, the only explanation is that no one gives a shit or they just don't have someone with the skillset to do the migration.
 
You folks are preaching to the choir here. :disgust:

We are swimming with a 10lb weight attached to each leg and arm.

Senior Anandtech Moderator
Common Courtesy
 
Status
Not open for further replies.

TRENDING THREADS

Back
Top