Phorum support and questions

[murlough23]

Looks like somebody is relative-linking to "/PhAQ.html" instead of "PhAQ.html". Oh, what a difference one slash makes!

[Vlad!]

Works fine here. I'm guessing you're using the old theme. I'll fiddle around with the headers and see if I can fix it.

OK, I think it's fixed (you phoks using the gimpy theme can tell me for sure). It looks like at some point SMF changed their URL scheme so that instead of index.php?topicblahblahblah they use index.php/topicblahblahblah, which is really wrong because index.php isn't a directory. So (as murlough pointed out), the old url was relative and thus caused the browser to say "hey, I'm in the /index.php/ directory, so I want the phaq.html that's in that directory".

Sometimes I like SMF and sometimes it makes me want to beat the developers with a copy of PHP for Dummies.

[enemy anemone]

yes, I'm a stickler for the old theme. and yep, the button works now. thanks!

[Aaron]

Was it just me or was the phorum down much of today and yesterday?

[enemy anemone]

it worked fine for me.

[Vlad!]

Was it just me or was the phorum down much of today and yesterday?

Pretty sure it was just you. What error message, if any, did you see?

[murlough23]

404 Error: Post Not Found

The fruitless argument that you just spent your precious spare time typing up was unfounded.

Did you mean to type http://www.theforum.com? If so, you are a dumbass.

[Vlad!]

No, definitely haven't seen anything like that (also, I wouldn't recommend going to that URL...it was fairly traumatizing).

Do you see this right after typing www.thephorum.net into the address bar? Or clicking on a bookmark?

[murlough23]

No, definitely haven't seen anything like that (also, I wouldn't recommend going to that URL...it was fairly traumatizing).

I didn't even know if there was an actual site at that URL when I typed it in. (I should have guessed, though.) Let me guess... it's NSFW?

[Vlad!]

I didn't even know if there was an actual site at that URL when I typed it in. (I should have guessed, though.) Let me guess... it's NSFW?

I'm not sure if the site itself is inappropriate or if it just has inappropriate ads that adblocker doesn't catch (my guess would be "both"). I didn't stick around long enough to do any extensive investigating.

[murlough23]

I'm not sure if the site itself is inappropriate or if it just has inappropriate ads that adblocker doesn't catch (my guess would be "both"). I didn't stick around long enough to do any extensive investigating.

That's funny, in light of an "ethics training" session that I was forced to attend at work yesterday, in which there was much discussion over whether Big Brother would pick up on it if you "accidentally stumbled across" an inappropriate website while at work, and come discipline you for it. The response by those leading the training was essentially "No, but if it takes you 30 visits to a site to figure out whether it's inappropriate, then we might come ask you some questions."

[Vlad!]

That's funny, in light of an "ethics training" session that I was forced to attend at work yesterday, in which there was much discussion over whether Big Brother would pick up on it if you "accidentally stumbled across" an inappropriate website while at work, and come discipline you for it. The response by those leading the training was essentially "No, but if it takes you 30 visits to a site to figure out whether it's inappropriate, then we might come ask you some questions."

Haha. Actually, I almost wish I were at work when I tried that URL out, since they have a filter that blocks pornographic sites (it's a little overzealous sometimes since if a site has clearly-designated areas where that sort of thing is allowed and the rest of the site is strictly on the level, the whole site will be blocked, but I digress).

[murlough23]

Haha. Actually, I almost wish I were at work when I tried that URL out, since they have a filter that blocks pornographic sites (it's a little overzealous sometimes since if a site has clearly-designated areas where that sort of thing is allowed and the rest of the site is strictly on the level, the whole site will be blocked, but I digress).

The programming geek in me wants to know how exactly that works (does it filter on keywords? How deep into a site does it have to spider to get to those "warning signs"? Are there false positives? Etc.), but I wouldn't exactly want to be the guy who had to test the "control group" when developing that sort of software.

We recently had an incident where somebody thought they had hacked us because they used a public "Suggest an Image" type of form to upload a thumbnail of a pornographic image. The truth of the matter is that they didn't "hack" us. Our software said, "Yeah, that's a JPG, we allow JPGs, and it appears to contain no malicious code, nor is there anything suspect about the filename. It's all good." because we don't exactly have a way of analyzing an image to tell whether it's pornographic.

As I mentioned in my blog not too long ago, if we did have that sort of image recognition software, some folks would never leave home!

NP: "One Day Like This", Elbow

[Vlad!]

The programming geek in me wants to know how exactly that works (does it filter on keywords? How deep into a site does it have to spider to get to those "warning signs"? Are there false positives? Etc.), but I wouldn't exactly want to be the guy who had to test the "control group" when developing that sort of software.

Sometimes I wonder if companies that make that sort of software have testers whose job it is to try to look at porn. I guess they must. But this software seems to work off a blacklist.

[murlough23]

Sometimes I wonder if companies that make that sort of software have testers whose job it is to try to look at porn. I guess they must. But this software seems to work off a blacklist.

That makes sense. You start with a list of obviously offensive terms that should never be in the name of a "decent" website, you add specific examples that have slipped through the cracks (and remove false positives such as xxxchurch.com from the list as you go), and it might never be 100% perfect, but the list continually improves. At least theoretically.

[leinad]

I was just searching for an old post of mine while trying to recollect the experience I had described. It has been blanked, and it would appear that I blanked it hours after posting it. But I'm sure I wouldn't have (unless I was hypnotized  ). What could have happened?

[Vlad!]

When we moved from IPB to SMF we imported the old database. However, the import process wasn't perfect, so we lost a few posts in the archives here and there. The database still has a record for the post, but its text content is gone (irkingly, I generally find it to be the most interesting/crucial posts in the thread which tend to be blanked ).

Unfortunately, I didn't know about this issue until well after we did the import, so there's not a whole lot we can do about it now. It's possible that if I were a highly-paid web admin I could do some database ninjutsu to recover the missing posts, but I'm not (if anyone happens to know of a tool that can search our current database looking for posts where the text content field is empty and then use the metadata to locate the same record in the old IPB database and populate the new database with the content from the old one then I'd love to hear about it, though...).

[Vlad!]

Also, see the last paragraph of this post.

[enemy anemone]

has anybody else gotten a popup about a server certificate and boatbling.net? I got it a couple of times when viewing the music makes you dumb thread,  but not the third time and so far not elsewhere.

[murlough23]

has anybody else gotten a popup about a server certificate and boatbling.net? I got it a couple of times when viewing the music makes you dumb thread,  but not the third time and so far not elsewhere.

It has to do with a graphic Wanderer posted which apparently is only available via https. I saw absolutely nothing, but was asked about the security certificate when I tried to go directly to the URL of the graphic (which I only found by quoting his seemingly empty message in a reply).

NP: "How Do I Love Her", Steven Curtis Chapman

[Aaron]

It has to do with a graphic Wanderer posted which apparently is only available via https. I saw absolutely nothing, but was asked about the security certificate when I tried to go directly to the URL of the graphic (which I only found by quoting his seemingly empty message in a reply).

NP: "How Do I Love Her", Steven Curtis Chapman

My bad on the picture!

[enemy anemone]

ah, okay. (not sure why I thought I got the popup from the music makes you dumb thread; maybe I had opened the other thread in another tab and went back to the dumb one. or maybe music threads make me dumb.)  I just wondered if there was some sneaky ad hackerness going on or something.

[Vlad!]

Schil, thanks for drawing attention to the issue, and Murlough, thanks for resolving it. I'm definitely paranoid about awkward phorum behavior after the events of a couple years ago, but we're up to date on our software patches so hopefully we won't have a repeat of last time.

My bad on the picture!

Technically it's their bad for letting their security certificate expire.

[murlough23]

We recently got a mandate from some security department at NASA/JPL that said anything we create on a website that requires a login has to go through https. But the web servers (which we don't control) aren't set up with the proper security certificates. This has been a major pain in my ass, because a user will go to one of our sites, try to login, see the big scary security warning (which is laid out much like an error page), assume the site's broken, and gripe to us about it.

[Vlad!]

The gummint is just watching out for you! It's not their fault that they can't work with their own requirements! It's yours for assuming competency on their part! (I worked for the government as an intern software developer for three years...I feel your pain).

[murlough23]

The gummint is just watching out for you! It's not their fault that they can't work with their own requirements! It's yours for assuming competency on their part! (I worked for the government as an intern software developer for three years...I feel your pain).

My sense of self-preservation says I shouldn't comment on this from my cubicle.

[chrisnu]

Is there a way to hide the total time logged in? It's making me insecure, seriously. 

[enemy anemone]

there is a little arrowish-looking button that allows you to shrink or expand the entire header.

[chrisnu]

That's fantastic. *phew*

sthingy!

[Nai]

My normal account, "Ian", seems to have been suspended?  I didn't get any notification on this and I didn't do anything stupid, so I was just wondering if this was a mistake and if it could be fixed.

[enemy anemone]

huh, that's weird. try now.

[Ian]

Thanks!