• Content count

  • Joined

  • Last visited

About Kirito

IPS Marketplace

  • Resources Contributor Total file submissions: 6

Recent Profile Visitors

397,608 profile views

Kirito's Activity

  1. Kirito added a post in a topic: Regular Releases. Could you please start doing them again?   

    ​I hope you mean your  preview  forum. As anyone who installed the beta software on their production forum and is currently stuck with bugs would deserve to be stuck in the situation they're in right now and have absolutely no right to complain. 
    I don't know why you feel the need to rush Beta 3. It's just another beta release. After the beta there's still likely going to be RC's, there's still going to be a decent bit of time before an official stable release is made. Posting beta releases faster is not going to speed anything up, IPS is releasing betas at a pace they feel is reasonable to keep up with bug reports and the likes.
  2. Kirito added a post in a topic: Any chance for proxy image support for ssl?   

    Hm, I don't think you should really run into any issues there. Plenty of image hosts allow you to upload images by providing links. You could properly list your domain as the referral for the download request, so if the site has hotlink protection enabled, the user would just get an error when attempting to embed the image. (If the image was hotlink protected, they wouldn't be able to link to it anyways).
    It wouldn't be any different than if the user downloaded the image themselves and uploaded it as an attachment anyways, just naturally always respect any takedown requests you receive, though I imagine it should be extremely rare you'd run into any issues with simple embedded images.
    (Quite honestly you could argue the same thing about proxying the image anyways, you're still serving the content from your server.)
    There are so many reasons why proxying images is a terrible idea though. It's a waste of bandwidth for you and the server your downloading from, it ties up connections to your web server, you're limited by how fast the server your proxying from it, you're likely to end up getting firewalled/throttled from servers by spamming them with large amounts of concurrent connections during peak hours, so on and so forth.
    Anyways, I think downloading embedded images locally would be a nice feature to have, but you would probably need to hook it somehow. I think with the new editor it should be possible.
  3. Kirito added a post in a topic: Any chance for proxy image support for ssl?   

    Wouldn't it make more sense just to download and serve embedded images locally?
    This would take a bit of work to implement, but it makes a lot more sense.
    Proxying embedded images in PHP sounds awful to me personally, assuming I'm understanding what you want correctly. When someone embeds an image into their post, you want your server to work as a proxy for the image to serve the resource over a secured connection?
  4. Kirito added a post in a topic: Username login   

    ​Thanks, this looks like a perfect solution, I'll definitely make use of it! ^^
  5. Kirito added a post in a topic: Username login   

    I plan on posting this as an announcement prior to upgrading my communities, warning members that usernames are going to be deprecated.
    I would probably do the same, you may be surprised by how many of your members don't know/remember the e-mail they registered with. I'll probably also allow logging in via display name temporarily, but that will also eventually be deprecated for e-mail only logins.
    (Of course, you can also just allow logging in via Display Name or e-mail if you personally prefer.)
  6. Kirito added a post in a topic: Better SEO values in the IPB template   

    ​IP.Board is plenty fast, if your website is slow that probably means you need to move to a better host.
    ​IPB4 makes some pretty significant improvements in regards to organization. Where do you think it's lacking?
    ​IPB makes full use of canonical tags, unless you're meaning to reference something else.
    You're right that SEO is important, but the majority of  real  SEO is just following sensible programming and design standards, which IPB seems to go above and beyond in doing. Everything else in the subject of SEO is either trying to manipulate Google's rankings (see how quickly your ranking on Google plummets after you're caught and penalized for that) or just pseudo nonsense from self-entitled "experts".
    So pretty much everything important relating to SEO (i.e. the "basics") IPB already does. If you think it's lacking somewhere, please do point out those specific areas for discussion.
    Other than that, content is indeed the primary, major driving force for your website. Even if your site was less than perfect in adhering to modern standards, Google would still likely find a way to work with it, as long as your website provides quality content that people are interested in.
  7. Kirito added a post in a topic: "Views" count in all IPS apps are fake !   

    I think being able to  throttle  the number of hits that can be registered from a single client in a  short  time period is an understandable thing to desire, it's just completely technologically unfeasible to implement, and it's a negligible "issue" anyways. If there was a really light and actually reliable way to do this, sure. But there's not.
  8. Kirito added a post in a topic: "Views" count in all IPS apps are fake !   

    ​Yes, and the same can be said for Wordpress and virtually every other web application out there as well. They all operate in pretty much the same way.
  9. Kirito added a post in a topic: "Views" count in all IPS apps are fake !   

    No, and even if it was possible something like that would be enormously complex to implement as a solution for what is really at best a negligible problem.
    I don't recommend leaving the "update topic views immediately" option enabled anyways. You disable this primarily for performance reasons, but it also removes instant feedback, reducing the temptation users may have to spam refresh their topics since they won't actually see the topic views going up immediately.
  10. Kirito added a post in a topic: gallery layout looks ratchet   

    I don't see the resemblance.
  11. Kirito added a post in a topic: "Views" count in all IPS apps are fake !   

    FWIW, you can create artificial download counts in a similar manner. I've brought this up a few times.
    But to be fair, I think this is a tricky situation. Tracking cookies are a deterrent for F5/refresh spam, but I'm not sure if it's worth the overhead. Why? Because view counts (unlike download counts, which are used for measuring popularity in multiple areas) aren't really that important, and this can easily be negated by simply not saving/ignoring cookies. I'm pretty sure ab doesn't store/save cookies, for example, so that Linux command would work either way.
    So then you're left with a solution of IP matching. This is reasonable when downloading files in IP.Downloads, but for topic views this would be  insane  and highly unfeasible.
    (Also, I'm pretty sure you can actually still spam refresh on a newly uploaded YouTube video and see the view count go up. There's probably a security feature/deterrent that kicks in at some point though.)
  12. Kirito added a post in a topic: Is Community IPS4 using any Cachin Method?   

    MySQL is still pretty terrible and hugely limited in regards to searching, both functionality and performance wise. I don't work with Sphinx a lot, but I have dabbled with Elasticsearch and it is worlds better than having to work with MySQL when you need to do a lot of searching, and the same surely can be said about Sphinx when you can actually fully utilize it.
  13. Kirito added a post in a topic: Full SSL   

    No problem, glad you got it working.
  14. Kirito added a post in a topic: Full SSL   

    ​If you're having trouble, feel free to post your .htaccess configuration here.
    As I said above, HSTS headers are completely ignored  over HTTP connections, so unless you force the client to a HTTPS resource at one point or another, HSTS headers will do literally nothing for you or your users. This is why you need to have your web server permanently redirect to HTTPS, HSTS is not some type of alternative to HTTP redirects, it's a completely different thing and it's only meant as a security feature that takes effect after the user establishes an initial secured connection connection to your website.
    So, no, it  could  not be used as an "alternative", ever. I'm sorry if you found my comments rude, but what you're saying is simply wrong, and I can only point that out so gently when a subject involving internet security is being discussed. Such information needs to be provided bluntly to make sure people clearly understand what should and should not be done.
    Maybe you meant to imply that since the user will "eventually" click through to a HTTPS page on your forum you don't need to force any redirects. Even if this is what you meant, this is still a really bad thing to do for  many  reasons and definitely shouldn't be suggested.
    Again, not meaning to be needlessly rude to you, but I think you're possibly misunderstanding how HSTS works. HSTS does  not  work over HTTP connections. If the user connects to your website over HTTP and receives a HSTS header, they will ignore it completely, they will not recognize it. That's how it works. HSTS will not be recognized unless the header is sent over an existing HTTPS connection,  not  HTTP. You can not send it over HTTP to have the client "redirect" to HTTPS, it won't work.
  15. Kirito added a post in a topic: Full SSL   

    ​You have your server misconfigured then. You're adding a hack to initdata.php to have IP.Board, the web application, perform 301 redirects, and you're using a really cumbersome method to accomplish it in PHP on top of that.
    The best and most efficient method is to have your web server perform the redirects for the reasons I stated above, not IP.Board. The method you are using will not force redirects on static resources not served by IP.Board. If you have your server configured correctly, it will work.
    ​It wasn't an analogy, I was stating a fact. It is not an alternative and if you are trying to use it as such you're plainly using HSTS improperly, there's no arguing this. HSTS is also not supported in older browsers, which you are already aware of, and for this reason alone you should not be using it as a lazy alternative to proper HTTP redirects.
    Please don't try and create arguments over nonsensical things. If you're using HSTS but still openly accepting HTTP connections on your website, you don't know what you're doing and your web server is misconfigured.

Status Feed

  1. Kirito » Midnight Modding

    Out of curiosity, could you tell me who it is IPS recently hired?

  2. Kirito » sijad

    this again is just meant as a friendly correction since I've seen you do it a lot in the jobs board.*

  3. Kirito » sijad

    As a friendly correction (since I don't think English is your primary language), when you want to tell someone you'd like to take up a project for them, you generally say you're "interested in it", not "interesting in it". Interesting just describes a specific something. "This is interesting" vs "I'm interested in this", as an example. I hope that makes sense, and I don't mean to insult you or anything, this again is just meant as a friendly...

    1. sijad

      My bad, I'll do it :)

  4. Kirito » bfarber

    I'd just like to reiterate I'm not supporting piracy or saying I think piracy is okay. But I really do find the whole "pirating is exactly like stealing in real life" argument extremely tiresome, which is why I responded aggressively to it. I know as a software developer for IP.Board, piracy is something you deal with constantly. But it's still a good thing that you don't shun away potential clients because they may have run a nulled copy of IP.Board at one point. But...