non-Anandtech Avatars

Toggle sidebar Toggle sidebar
Status
Not open for further replies.
Eureka

Eureka

Diamond Member
Sep 6, 2005
3,822
1
81
What's with all the hubbub over non-Anandtech avatars? I haven't seen anyone with any... I don't seen an option to use one anyway? Are people somehow glitching the forums to have non-Anandtech avatars?

Also... why aren't we allowed to have personal avatars here?

----
Moved from OT
AnandTech Moderator Evadman
 
Platypus

Platypus

Lifer
Apr 26, 2001
31,046
321
136
Fusetalk is a fucking abortion of code and contains exploitable contained XSS capable attack vectors.

There's a thread on it in FI, though I wouldn't browse on AT without noscript installed if I were you. They don't have anyone on board that seems all that overly concerned with the problems.
 
Kadarin

Kadarin

Lifer
Nov 23, 2001
44,296
16
81
Sounds like they're just covering up the problem with their "anyone using non-standard avatars will be banned" announcement. What if someone has (something that appears to be) a standard avatar, but the profile still contains code inducing the issue that results in a potential XSS attack?
 
X

xSauronx

Lifer
Jul 14, 2000
19,582
4
81
Originally posted by: Kadarin
Sounds like they're just covering up the problem with their "anyone using non-standard avatars will be banned" announcement. What if someone has (something that appears to be) a standard avatar, but the profile still contains code inducing the issue that results in a potential XSS attack?
Click to expand...

bingo

Originally posted by: Platypus
Fusetalk is a fucking abortion of code and contains exploitable contained XSS capable attack vectors.

There's a thread on it in FI, though I wouldn't browse on AT without noscript installed if I were you. They don't have anyone on board that seems all that overly concerned with the problems.
Click to expand...

and this. although some have made it sound like switching the forums is a big objective...weve been hearing about it forever without any real results. they could have switched to VB long ago, frozen these for archival purposes and just tried to convert the FT stuff to VB.
 
Platypus

Platypus

Lifer
Apr 26, 2001
31,046
321
136
Originally posted by: Kadarin
Sounds like they're just covering up the problem with their "anyone using non-standard avatars will be banned" announcement. What if someone has (something that appears to be) a standard avatar, but the profile still contains code inducing the issue that results in a potential XSS attack?
Click to expand...

Don't worry, they 'take security very seriously' lol
 
Baked

Baked

Lifer
Dec 28, 2004
36,052
17
81
Fusetalk's poor coding feels like entrapment to me. If you bother to google for 5 minutes, you'll find an exploit to take over the forum (remember loke?). But if you do, you'll get permabanned. So even though there are exploits to this terrible piece of crap software, the developers don't wanna fix it, but the users aren't allowed to change anything using the exploits are risk getting banned. Pretty fucked up right? When are we switching over to vBB like the other 90% of the internet forums?
 
BeauJangles

BeauJangles

Lifer
Aug 26, 2001
13,941
1
0
Originally posted by: xSauronx
Originally posted by: Kadarin
Sounds like they're just covering up the problem with their "anyone using non-standard avatars will be banned" announcement. What if someone has (something that appears to be) a standard avatar, but the profile still contains code inducing the issue that results in a potential XSS attack?
Click to expand...

bingo

Originally posted by: Platypus
Fusetalk is a fucking abortion of code and contains exploitable contained XSS capable attack vectors.

There's a thread on it in FI, though I wouldn't browse on AT without noscript installed if I were you. They don't have anyone on board that seems all that overly concerned with the problems.
Click to expand...

and this. although some have made it sound like switching the forums is a big objective...weve been hearing about it forever without any real results. they could have switched to VB long ago, frozen these for archival purposes and just tried to convert the FT stuff to VB.
Click to expand...

Yeah, I don't see what the real problem is with just starting over on a new DB. Great, we "lose" some archived info. Just leave up a read-only copy of Fusetalk for now. That'll work and we can move away from this fucking piece of shit. Instead it seems like they're constantly inventing new reasons why a migration is impossible.

I just don't see it. The most important thing is to get the usernames ported, and all you really need for that is the username field, the email field, and the md5-encoded password. Is it really any more complicated than that?
 
Platypus

Platypus

Lifer
Apr 26, 2001
31,046
321
136
Now the excuse is that there are tons of great new features that we'll all be blown away with.

The only thing that should be blown away are the servers hosting this absolute joke of an application and they should be reinstalled with something that doesn't contain such bush league code. It's not that fucking complicated to make the switch, the only explanation is that no one gives a shit or they just don't have someone with the skillset to do the migration.
 
EagleKeeper

EagleKeeper

Discussion Club Moderator<br>Elite Member
Staff member
Oct 30, 2000
42,589
5
0
You folks are preaching to the choir here. :disgust:

We are swimming with a 10lb weight attached to each leg and arm.

Senior Anandtech Moderator
Common Courtesy
 
Status
Not open for further replies.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom