*SCRIPTS REMOVED*
I agree. No more HTML.
I agree. No more HTML.
<div style="background-color: #000000;">
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>MAV,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
Whachoo tryin to do man? I'd love to assist if I am welcome to do so.
<br>
<br>
<br>
<br>
<b>-Don-</b>
</p>
</div>
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>MAV,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
Whachoo tryin to do man? I'd love to assist if I am welcome to do so.
<br>
<br>
<br>
<br>
<b>-Don-</b>
</p>
</div>
There is obvious potential for harm with HTML enabled throughout posts.
<div style="background-color: #000000;">
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>MAV,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
This will only occur if you do it. So far, you are the only one who has attempted to write malicious code. No matter how hard you try to disable and deter code, there will always be holes. If you do it, you do it at the expense of functionality. You are drawing attention to it. So other than that what other beef do you have with code? Should we disable it in our profiles too???
No matter how much you fake a protection fault message or try and run 5000 pop-ups at once, this will only show that you are one person trying to ruin it for anyone that may not agree with you. Everyone knows that malicious code is possible. It is possible with yahoo IM and through html on your profile, but it won't be a problem if responsible members do not abuse it. So far you are the only one to do it. You should really learn tolerance. Because you are a novice at code, doesn't mean you should ruin it for everyone else.
Would you try to bring a gun through airline security to test it? Your reasoning does not make sense to me. It's like we shouldn't have cash registers in stores because they can be robbed to easily. Then to prove the point, you rob the store. Sure they get robbed, but demand out weighs the risk. Should we not allow pictures on the site because you can't prevent theft of said pictures?
<br>
<br>
<b>-Don-</b>
</p>
</div>
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>MAV,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
This will only occur if you do it. So far, you are the only one who has attempted to write malicious code. No matter how hard you try to disable and deter code, there will always be holes. If you do it, you do it at the expense of functionality. You are drawing attention to it. So other than that what other beef do you have with code? Should we disable it in our profiles too???
No matter how much you fake a protection fault message or try and run 5000 pop-ups at once, this will only show that you are one person trying to ruin it for anyone that may not agree with you. Everyone knows that malicious code is possible. It is possible with yahoo IM and through html on your profile, but it won't be a problem if responsible members do not abuse it. So far you are the only one to do it. You should really learn tolerance. Because you are a novice at code, doesn't mean you should ruin it for everyone else.
Would you try to bring a gun through airline security to test it? Your reasoning does not make sense to me. It's like we shouldn't have cash registers in stores because they can be robbed to easily. Then to prove the point, you rob the store. Sure they get robbed, but demand out weighs the risk. Should we not allow pictures on the site because you can't prevent theft of said pictures?
<br>
<br>
<b>-Don-</b>
</p>
</div>
Ah, the keyword in your entire post was "responsible". I agree with you, responsible members of the site will not worry about malicious code. However, all it takes is one commercial entity to join as a trial member and exploit the weaknesses.
It doesn't take a sophisticated programmer to figure out that if HTML is enabled, then javascript or something similar may work as well. So, to blame me for pointing this out would actually be faulty logic since you -D- were the one that first posted about HTML being enabled.
Any "script kiddie" will be able to exploit the site knowing this information. Rob has some programming to do! (Sorry Rob!) I was glad to see that regardless of what I did, I could not get PHP commands to run. That would be far more dangerous than just javascript. I really can't see any value in having javascript enabled in posts. I can live with HTML being available in posts as that is someone's expression. But javascript?
Well D, can you see any reason to have javascript enabled? I'm seriously asking. You usually have an opposite opinion as I do on most things and I like to seek out differing opinions. It broadens my understandings.
And for those that have not rebooted yet, yes, that was a joke.
I would never post anything that would harm anyone's PC. But I bet it got you gasping for breath? Kinda like The Truth ads about smoking.
It doesn't take a sophisticated programmer to figure out that if HTML is enabled, then javascript or something similar may work as well. So, to blame me for pointing this out would actually be faulty logic since you -D- were the one that first posted about HTML being enabled.
Any "script kiddie" will be able to exploit the site knowing this information. Rob has some programming to do! (Sorry Rob!) I was glad to see that regardless of what I did, I could not get PHP commands to run. That would be far more dangerous than just javascript. I really can't see any value in having javascript enabled in posts. I can live with HTML being available in posts as that is someone's expression. But javascript?
Well D, can you see any reason to have javascript enabled? I'm seriously asking. You usually have an opposite opinion as I do on most things and I like to seek out differing opinions. It broadens my understandings.
And for those that have not rebooted yet, yes, that was a joke.
I would never post anything that would harm anyone's PC. But I bet it got you gasping for breath? Kinda like The Truth ads about smoking.<div style="background-color: #000000;">
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>VP,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
I totally agree. Like I said above. You could use the same argument to not allow pictures to be posted because of how easy it is to steal them regardless of the javascript snippet that attempts to prevent "right clicks". I think MAV should learn tolerance.
The site has "strip tags" enabled on the server to prevent such a attack, MAV. It will not allow "http" to exist in the code. There for you cannot reference another site. The only way is to post an entire URL in the open. like this:
http://www.google.com
You can't even call on an off-site image. All paths have to be local. The potential of the attack you are talking about could only happen if you wrote malicious code that would loop. That's pretty much it.
<br>
<br>
<b>-Don-</b>
</p>
</div>
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>VP,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
I totally agree. Like I said above. You could use the same argument to not allow pictures to be posted because of how easy it is to steal them regardless of the javascript snippet that attempts to prevent "right clicks". I think MAV should learn tolerance.
The site has "strip tags" enabled on the server to prevent such a attack, MAV. It will not allow "http" to exist in the code. There for you cannot reference another site. The only way is to post an entire URL in the open. like this:
http://www.google.com
You can't even call on an off-site image. All paths have to be local. The potential of the attack you are talking about could only happen if you wrote malicious code that would loop. That's pretty much it.
<br>
<br>
<b>-Don-</b>
</p>
</div>
Valence,
Yep, you are correct. I removed the scripts. I think the point was proven effectively enough. Should that kind of activity be allowed, the entire site and forums would be pretty much worthless (again, in my opinion.)
I know Rob saw them due to some editing in the scripts. What I found commendable is that he did not remove them. He just edited one. Kudos Rob on taking the high ground on censorship! I would have deleted the whole forum posting because I agree with Valence on the patience thing.
Since Rob took the high ground, I am too. I have removed the scripts out of the consideration for others.
Christian
Yep, you are correct. I removed the scripts. I think the point was proven effectively enough. Should that kind of activity be allowed, the entire site and forums would be pretty much worthless (again, in my opinion.)
I know Rob saw them due to some editing in the scripts. What I found commendable is that he did not remove them. He just edited one. Kudos Rob on taking the high ground on censorship! I would have deleted the whole forum posting because I agree with Valence on the patience thing.
Since Rob took the high ground, I am too. I have removed the scripts out of the consideration for others.
Christian
<div style="background-color: #000000;">
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>MAV,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
I am glad you are seeing the light. There is just as much compomise in code in the profile and pictures that are posted. There is never full proof security. To point out flaws, is to compromise security.
It's kinda the same lines as a newspaper vending machine. Do you pay for one and take 4 or do you be honest? As I said, your scenario for security compromise is virtually nil, as strip tags have been used to disallow external URL's.
<br>
<br>
<b>-Don-</b>
</p>
</div>
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>MAV,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
I am glad you are seeing the light. There is just as much compomise in code in the profile and pictures that are posted. There is never full proof security. To point out flaws, is to compromise security.
It's kinda the same lines as a newspaper vending machine. Do you pay for one and take 4 or do you be honest? As I said, your scenario for security compromise is virtually nil, as strip tags have been used to disallow external URL's.
<br>
<br>
<b>-Don-</b>
</p>
</div>
"Would you try to bring a gun through airline security to test it? Your reasoning does not make sense to me. It's like we shouldn't have cash registers in stores because they can be robbed to easily. Then to prove the point, you rob the store. Sure they get robbed, but demand out weighs the risk."
Actually, Homeland Security does just this! They even test their systems with explosive training aids that the screeners do not know about. Remember about a year or so ago they lost one in baggage handling! Companies pay big dollars to have their security tested.
The only light I see is that you laid down a challenge by talking about the server. It is not one I'll pick up though. Javascript is not my native language. PHP and VB are. I'll take the high ground and let the administrators determine if this little incident represents a problem.
Like I said before, HTML is fine in small amounts. I can't compliment you enough -D- on the new look of your posts. Much easier to read and not as overbearing. I actually like it. It is nice to see <b>some</b> color in postings.
Oh, and I am one of those guys that takes more than one newspaper! LOL Just kidding. I read them online.
Actually, Homeland Security does just this! They even test their systems with explosive training aids that the screeners do not know about. Remember about a year or so ago they lost one in baggage handling! Companies pay big dollars to have their security tested.
The only light I see is that you laid down a challenge by talking about the server. It is not one I'll pick up though. Javascript is not my native language. PHP and VB are. I'll take the high ground and let the administrators determine if this little incident represents a problem.
Like I said before, HTML is fine in small amounts. I can't compliment you enough -D- on the new look of your posts. Much easier to read and not as overbearing. I actually like it. It is nice to see <b>some</b> color in postings.
Oh, and I am one of those guys that takes more than one newspaper! LOL Just kidding. I read them online.
<div style="background-color: #000000;">
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>MAV,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
I know that this site uses php. In fact there are more vulerabilities in the PHP than the HTML. I was only saying that striptags is used here so the only thing you really have to worry about is javascript that loops. That is more of a nusiance than a threat.
I am a member of quite a few sites that allow html. The only time it's ever caused a problem is when they allow off-site code. That is not the case here. I appreciate the compliment. I too was looking for a cleaner look to my layouts. As I said before I have good reasons I do it and I like it.
TSA, does test airport security as does NRC test the Nuclear Power plants. However, it is not up to us, John & Jane Q, to do that for them. After 9/11 I was on airport security detail in Portland, OR and PDX with the military as an armed presence. I learned all about airport security. It was actually very surprising and very enlighting. I have also worked as an armed security officer at Robinson Nuclear Plant in South Carolina. They test their security measures meticulously.
Anyway man, I appreciate the compliment. It would be cool to see more people implement HTML/CSS in their posts. I know it won't always be pretty, but the forums would get a lot more rich, colorful and diverse. I think we should take the money and run.
<br>
<br>
<b>-Don-</b>
</p>
</div>
<p style="background-color: gold; color: black; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black; font-family: stencil; font-size: 18;">
<b>MAV,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: orange; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
I know that this site uses php. In fact there are more vulerabilities in the PHP than the HTML. I was only saying that striptags is used here so the only thing you really have to worry about is javascript that loops. That is more of a nusiance than a threat.
I am a member of quite a few sites that allow html. The only time it's ever caused a problem is when they allow off-site code. That is not the case here. I appreciate the compliment. I too was looking for a cleaner look to my layouts. As I said before I have good reasons I do it and I like it.
TSA, does test airport security as does NRC test the Nuclear Power plants. However, it is not up to us, John & Jane Q, to do that for them. After 9/11 I was on airport security detail in Portland, OR and PDX with the military as an armed presence. I learned all about airport security. It was actually very surprising and very enlighting. I have also worked as an armed security officer at Robinson Nuclear Plant in South Carolina. They test their security measures meticulously.
Anyway man, I appreciate the compliment. It would be cool to see more people implement HTML/CSS in their posts. I know it won't always be pretty, but the forums would get a lot more rich, colorful and diverse. I think we should take the money and run.
<br>
<br>
<b>-Don-</b>
</p>
</div>
So Don, does a picture exist of you smiling? Anywhere? Even one taken without your permission? LOL
So Don, does a picture exist of you smiling? Anywhere? Even one taken without your permission? LOL
<div style="background-color: #CDB38B; border:3px double #9C661F;">
<p style="background-color: #CDAA7D; color: #FFFFFF; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px ridge black; font-family: stencil; font-size: 18;">
<b>MAVENX,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: #FFEFD5; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
NO, I have one with a smirk. LOL. I am an ugly fat fuck with a hot wife. I figure why smile in the picture. It's not me they're lookin at anyway LOL. Seriously, I have no idea if such a picture exists. I don't have one and I am not going to hurt my precious camera by letting it get to much exposure to this mug. HAHAHA.
<br>
<br>
<b>-Don-</b>
</p>
</div>
<p style="background-color: #CDAA7D; color: #FFFFFF; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px ridge black; font-family: stencil; font-size: 18;">
<b>MAVENX,</b>
<span style="float: left; margin-left:0.2cm; margin-right:0.2cm;">
<a href="profile.php?memberid=93bb7c7f-46d3-b2c8-c304-a356efca938c" target="_blank">
<img src="photos/t/196213843450b1545491c4TEQUILAROSE.jpg" width=130 height=180>
</a>
</span>
</font>
<p style="background-color: #FFEFD5; color: #000000; padding:10px; text-align: justify; margin-left:0.2cm; margin-right:0.2cm; border:3px dotted black;">
NO, I have one with a smirk. LOL. I am an ugly fat fuck with a hot wife. I figure why smile in the picture. It's not me they're lookin at anyway LOL. Seriously, I have no idea if such a picture exists. I don't have one and I am not going to hurt my precious camera by letting it get to much exposure to this mug. HAHAHA.
<br>
<br>
<b>-Don-</b>
</p>
</div>
I think I have a pic of Don smiling...and it's even Candid!
<img src="../photos/k/%7B180850636145c1270b96138%7DKINBAKU_THEATRE.jpg">
<img src="../photos/k/%7B180850636145c1270b96138%7DKINBAKU_THEATRE.jpg">