|
OpenTracker - a new tracker source!
1 Attachment(s)
Attention
|
I like it ...
looks alot like the old TTI they just got rid of lol |
Hi!
Yes that right about Ti, my friend was the coder there.. But the owner of Ti dident want his code anymore so we go opensource with it, so we will release it when we are done :) There is alot of change in the code seens Ti used it! //KizzE www.opentracker.nu kizze@opentracker.nu |
yeah TTI have gone to a SCC look now , i liked TTI code and cant wait to use it
|
no offence but if i where you i would remove your facebook for that site , it's more risci to put you on facebook with that kinda of stuff :wallbash:
|
Download link ?
|
Sorry but the site is not finished get!
But you can try out the demo site for now! We will tell you in this forum and on our website when the site is finished |
hi
good luck looking forward to playing with it
BUT open tracker why signups needed :drink: |
Your CMS is completly vunerable to CRSF attacks. You should use a professional framework (like me with Symfony or Zend) to avoid that everywhere on your source code.
|
Quote:
|
Demo.
|
Looks cool, i like the design nice and basic...
on the demo i came across a notice error, mysql error Code:
Notice: Undefined index: group in /var/opentracker.nu/demo/library/Acl.php on line 76 Notice: Query fel in /var/opentracker.nu/demo/library/DB.php on line 79 MYSQL_ERROR - |
looks very nice mate, id shag it ;):ok:
|
Quote:
Thanks for the input, i will have a look at it. The system is in heavy development right now. Not all the security features nor other shit is there yet. Keep in mind that we are developing everything from scratch :) Bump: Quote:
|
Do not forget to make an account on our forum, where you can make suggestions or just talk to us!
|
kizze if you notice you site runs faster with out facebook stuff to :P or 3rd party
stuff looks like a nice source though clean theme etc :drink: |
Quote:
|
Quote:
|
Quote:
in this case it did not check the url ect, but when updated in the user field it is sanitized. i could upload a copy of my mysql class and you'll see for your self. |
Quote:
and also as you guys stated it is in developement , it's gonna be cool to see who will run a major site with this new script . but wish you all good luck with your source :drink: |
I'm no disputing the classes wont by the way if it comes across like that, im only offering advice and " Golden Rules " on something i know a fair amount on, something that will kill any project dead before its begun if not addressed correctly. Unless you have personally written those classes and know exactly whats happening with any given scenario of submitted data do not trust nothing or take it for granted, be very thorough because there is some serious talented operators out there that can CRSF or inject for fun. End note best of luck with it and above all have fun doing so =]
|
Quote:
Bump: Quote:
|
http://opentracker.nu/demo/user/logout/
As the avatar url prevents me from logging in so you should pay attention to what i was saying, a xbtit developer originally showed me this and its probably a common hack in php where developers assume no url santization is required i suggest you check getimagesize out this will validate a url against a image... |
Quote:
|
As you know, we had made a demo account (www.opentracker.nu/demo), but now we have been forced to cancel the edit profile account, someone seemed to go in and change the password! So unfortunately you can not test on those capabilities even further during the edit profile.
|
Quote:
|
Quote:
But we removed the avatar and disabled the demo user from being editable |
Quote:
Sanitize inputs is a thing, but check the source of the input is an other. That's CRSF : you've to check the source of the request. When you're displaying a form, you're excepting data from this form only and block other requests issued by a foreign site/domain or your own platform. When you're displaying an action link (like add as friend, logout, delete account etc), only the page where the link is displayed can trigger process. Currently, it's possible to call all your URLs from everywhere (foreign site and your CMS itself). |
Quote:
Bump: Uploading the latest build of openTracker to the demo.. enjoy |
Quote:
|
Quote:
|
Looks very nice :) i wanna test it
Good luck... |
looks nice and simple, good luck with your work guys and never give up.
|
Quote:
Bump: Quote:
|
Quote:
|
Quote:
|
What about the other superglobals lol
passed through get... erm i was not aware get was some sort of callback rofl, im only joking with you :welcome: |
We now have fixed a IRC server, so if you want you can come in and talk with us Developers!
Server: opentracker.nu Port: 6667 / 9000 Channel: #openTracker Bump: We have now started a blog So go in and read it. If you want to avoid to go and look at the blog all the time, I recommend you to register to our newsletter, there we send out each time we update the blog with the same contens in a email! Sincerely openTracker Bump: Yeeeha So we are closing up for launch time of the first alpha release on openTracker. We are currently working very hard to be able to deliver a good system directly from start. So we're allmost done with the admin panel (see screenshots below) but there are still along way to go. We're hoping to have this weekend as launch weekend with live support on our IRC server if you get into any technical difficulties, we are here to support you. Bump: It now remains less than a day before we release the alpha version! So go to www.opentracker.nu and sign up for our newsletter and you'll be notified directly when we release it! We will also during the weekend / next week release the first mods to openTracker! Also over the weekend, we will keep running live support on our IRC channel! Server: opentracker.nu Port: 6667/9000 Channel: # opentracker // DEV opentracker www.opentracker.nu support@opentracker.nu Bump: The source is released!!! visit http://opentracker.nu to download the sourcecodes of openTracker alpha 0.1.0 Make sure you read our Wiki for support. Bug reports may be reported on our forums, We also offer live support on our IRC. IRC info can be found on http://opentracker.nu ENJOY! /openTracker development team |
hi
nice work and keep it up support wise and source:drink:
|
We will not take responsibility for something going wrong with your computer if you download our source from a link that we haven't give you!
|
| All times are GMT +2. The time now is 18:04. |
Powered by vBulletin® Version 3.8.11 Beta 3
Copyright ©2000 - 2024, vBulletin Solutions Inc.