Code updates

Älphämönkëy

I made a ton of code changes tonight as phpBB released yet another security patch.

If you notice something funky, tell me.

Dog

Anything in particular we should be looking for?

Also, I cheated on you with deni.
I'm sorry.

Raijin Quickfoot

SeñorAmor wrote:

Anything in particular we should be looking for?

Also, I cheated on you with deni.
I'm sorry.

Hussy.

Älphämönkëy

SeñorAmor wrote:

Anything in particular we should be looking for?

Also, I cheated on you with deni.
I'm sorry.

Mostly random redirect errors. I trust the phpBB guys though, they do a good job, so I dont think there will be any problems.


:shock:
You cheating bastard!

Dog

alphamonkey wrote:

SeñorAmor wrote:

Anything in particular we should be looking for?

Also, I cheated on you with deni.
I'm sorry.

Mostly random redirect errors. I trust the phpBB guys though, they do a good job, so I dont think there will be any problems.


:shock:
You cheating bastard!

I got randomly redirected to your heart.

denihilist

Yeah but you had to go pick up your girlfriend Senor.
(no tilde)

Dog

I certaiñly did, but her druñk ass was iñ the mood for some hañky pañky, so it was all good.

(many tildes)

Legacy

Spoilers?

Dog

I had sex.

*Edit*
To be fair, whilst having sex with my gf, I was thinking about Alpha and Deni (having sex).

denihilist

I want to do your girlfriend.

Dog

...

Steven

alphamonkey wrote:

security patch

What was it they needed to patch?

Älphämönkëy

Steven wrote:

alphamonkey wrote:

security patch

What was it they needed to patch?

A very clever user could submit weird data and have access to run SQL commands. This could dump all of our password hashes into a file and (after a long ass time) eventually crack them.

Dog

alphamonkey wrote:

Steven wrote:

alphamonkey wrote:

security patch

What was it they needed to patch?

A very clever user could submit weird data and have access to run SQL commands. This could dump all of our password hashes into a file and (after a long ass time) eventually crack them.

Ok, now I'm gonna strain myself on thinking how this would be possible.

Steven

alphamonkey wrote:

Steven wrote:

alphamonkey wrote:

security patch

What was it they needed to patch?

A very clever user could submit weird data and have access to run SQL commands. This could dump all of our password hashes into a file and (after a long ass time) eventually crack them.

Haha, SQL injection, jesus, I thought that was a lost art.

Älphämönkëy

SeñorAmor wrote:

alphamonkey wrote:

Steven wrote:

alphamonkey wrote:

security patch

What was it they needed to patch?

A very clever user could submit weird data and have access to run SQL commands. This could dump all of our password hashes into a file and (after a long ass time) eventually crack them.

Ok, now I'm gonna strain myself on thinking how this would be possible.

Simple. SQL Injection. phpBB didnt handle their input correctly and made it so a user could write values into a mySQL query. A user could then call for the password hash of a user or a group of users. With little\no effort that list could be referenced to a UID and bam, you can forge a cookie and login as the user without their knowledge. Or if you really were mean you could run that MD5 hash through a program like john the ripper and bruteforce it (or a group of passwords) All the simple passwords would break quickly, the better ones would take longer.

Dog

alphamonkey wrote:

SeñorAmor wrote:

alphamonkey wrote:

Steven wrote:

alphamonkey wrote:

security patch

What was it they needed to patch?

A very clever user could submit weird data and have access to run SQL commands. This could dump all of our password hashes into a file and (after a long ass time) eventually crack them.

Ok, now I'm gonna strain myself on thinking how this would be possible.

Simple. SQL Injection. phpBB didnt handle their input correctly and made it so a user could write values into a mySQL query. A user could then call for the password hash of a user or a group of users. With little\no effort that list could be referenced to a UID and bam, you can forge a cookie and login as the user without their knowledge. Or if you really were mean you could run that MD5 hash through a program like john the ripper and bruteforce it (or a group of passwords) All the simple passwords would break quickly, the better ones would take longer.

Strain complete.

Steven

SeñorAmor wrote:

alphamonkey wrote:

SeñorAmor wrote:

alphamonkey wrote:

Steven wrote:

alphamonkey wrote:

security patch

What was it they needed to patch?

A very clever user could submit weird data and have access to run SQL commands. This could dump all of our password hashes into a file and (after a long ass time) eventually crack them.

Ok, now I'm gonna strain myself on thinking how this would be possible.

Simple. SQL Injection. phpBB didnt handle their input correctly and made it so a user could write values into a mySQL query. A user could then call for the password hash of a user or a group of users. With little\no effort that list could be referenced to a UID and bam, you can forge a cookie and login as the user without their knowledge. Or if you really were mean you could run that MD5 hash through a program like john the ripper and bruteforce it (or a group of passwords) All the simple passwords would break quickly, the better ones would take longer.

Strain complete.

weerd coed go in usernaem feeld, out go passwards

Dog

Steven wrote:

SeñorAmor wrote:

alphamonkey wrote:

SeñorAmor wrote:

alphamonkey wrote:

Steven wrote:

alphamonkey wrote:

security patch

What was it they needed to patch?

A very clever user could submit weird data and have access to run SQL commands. This could dump all of our password hashes into a file and (after a long ass time) eventually crack them.

Ok, now I'm gonna strain myself on thinking how this would be possible.

Simple. SQL Injection. phpBB didnt handle their input correctly and made it so a user could write values into a mySQL query. A user could then call for the password hash of a user or a group of users. With little\no effort that list could be referenced to a UID and bam, you can forge a cookie and login as the user without their knowledge. Or if you really were mean you could run that MD5 hash through a program like john the ripper and bruteforce it (or a group of passwords) All the simple passwords would break quickly, the better ones would take longer.

Strain complete.

weerd coed go in usernaem feeld, out go passwards

Holy shit. De ja vu.

And yeah, I assumed it was done this way, but I also assumed the phpBB guys would have made 100% certain this wasn't possible.

Steven

The entire problem is just one period mark. That's kind of funny, actually.

Dog

Heh.

.hack

Orthanc

Jesus fuck my eye christ. I would have thought in something the size of phpBB they would have mechanisms to avoid injection holes. That's crazy.

Orthanc

BUG!!! BUG!!!

I think it's forcing images to end in image tags.

observe

[img]http://tinyurl.com/3gryj[/img]
[img]http://tinyurl.com/35np9/MBsig1.jpg[/img]

second works, first doesn't

Munkus Beaver

http://www.penny-arcade.com/forums/viewtopic.php?t=52953

May or may not be caused by the code changes

Orthanc

munkus beaver wrote:

http://www.penny-arcade.com/forums/viewtopic.php?t=52953

May or may not be caused by the code changes

It must have been caused by A code change.

If it wasn't caused by these code changes, it's mighty co-incidental

Munkus Beaver

Let me rephrase that then.

May or may not be purposeful.

EDIT: Also, my sig was fine until I tried to update it not a few minutes ago. I got rid of the tinyurl until this gets fixed though, because itjust looks silly.

Orthanc

My understanding is that phpBB stores the HTML translation rather than the bbCode in the database, so it makes sence that it would only break on update

Meiz

Whatever you did...

Grease fucking lightning.