Lady Error
█▓▒░ ░▒▓█
- Joined
- Jan 21, 2021
- Messages
- 9,215
Is he on his yearly walkabout in the Outback?DarkUnderlord's going to show up in here soon like the end of The Sorcerer's Apprentice.
Is he on his yearly walkabout in the Outback?DarkUnderlord's going to show up in here soon like the end of The Sorcerer's Apprentice.
Would depend on how often someone posts. We've got users who can make literally hundreds of posts in a couple of weeks. Would either have to limit deletion to a very short time window, or disable it altogether.That would work too, no?Not limited like that, limited the same as post edits can be limited, i.e. how far back you can go when editing posts. E.g. a week, a month, 3 months, etc.Wouldn't that solve the whole issue? Make it like one post deletion per hour.
Doesn't work in mine, they just start buying dodgy contraband cigs smuggled from Paraguay'often'i dont even know what is thatdont quote me i dont like sexual minoritiesmind your own goddamn website, schizoI wrote a guide to help you guys setup 2FA without a phone, happy to help as always!
https://rpghq.org/forums/viewtopic....-a-phone-rusty-s-recommended-password-manager
his website doesn't have these problems
Cut him some slack, the rumour floating around is that Jenkem recently got addicted to wellbutrin and that's why he's even more unstable than usual.
It's an antidepressant often given to smokers to help them quit.
The rumour I heard is Jenkem got dependent on it whilst trying to quit smoking.
in my part of the world what makes smokers quit is poverty
You have to whitelist it since it doesn't work.Sides, if the problem was cookie retention, we wouldn't even be able to login.
Well, we would, but the cookie would get deleted instantly, giving the appearance that we can't.
Excellent idea. If they want to delete their posts further down the road, let them request the power directly from the admins. Let them submit 2FA for that perhaps.Would either have to limit deletion to a very short time window,
Would depend on how often someone posts. We've got users who can make literally hundreds of posts in a couple of weeks. Would either have to limit deletion to a very short time window, or disable it altogether.That would work too, no?Not limited like that, limited the same as post edits can be limited, i.e. how far back you can go when editing posts. E.g. a week, a month, 3 months, etc.Wouldn't that solve the whole issue? Make it like one post deletion per hour.
It's been 24 hours, and I've had to enter another 2FA code to access the forum today.
Did you guys fuck with the settings, or is the checked by default 'Trust device for 30 days' thing just buggy?
I can see a cdx_tfa_trust cookie that's not supposed to expire until July 19th (that's a bit more than 30 days, but whatever), which I assume has to do with 2fa, but that doesn't appear to be blocked by anything.
This would also fix the problem of deleting old posts breaking links that include the page number even if pagination doesn't get messed up completely.I find this whole thing just plain annoying. If the problem is that deleting posts can mess with forum infrastructure; why don't you change the delete button to something that just edit the post to a single gif saying "this post has been deleted" instead?
i suppose anyone who receives a new ip from their isp on a daily basis will have to do the 2fa thingy daily as well... unless they start using a vpn that provides a fixed ip.
in my opinion this should better be limited to entirely new logins, as proposed by spectacle above
https://xenforo.com/community/resources/flood-permissions.6800/There's no such addon
Here is my experience with MFA during the last six months or so.Had to login and enter the code again this morning and I didn't even close the codex browser tab let alone change any other settings. Before this change I would stay logged in indefinitely so it's not the cookies. No security addons but using brave browser.
How about limiting the number of ratings one can give during the day...Would depend on how often someone posts. We've got users who can make literally hundreds of posts in a couple of weeks. Would either have to limit deletion to a very short time window, or disable it altogether.That would work too, no?Not limited like that, limited the same as post edits can be limited, i.e. how far back you can go when editing posts. E.g. a week, a month, 3 months, etc.Wouldn't that solve the whole issue? Make it like one post deletion per hour.
I donated with a gift card motherfuckerwhydoibother makes a valid point, though. If you donated to Codex, we already "know who you are". Now, all of a sudden, you're worried about providing potentially more info?
Congrats, looks like you found one. But even with deletion instances time limited, someone with a script could still play the long game and delete a lot of posts over a longer period and be even harder to notice. So it wouldn't solve the problem, it'd just extend it over a longer period. My choice would be either limit post deletion to something like 2 hours, or disable it altogether. Any legit need for post deletion could be asked of the mods by using the report post function. Probably half of the deleted posts here are basically people who instead of editing their post, just delete it and make a new one with the same contents.https://xenforo.com/community/resources/flood-permissions.6800/There's no such addon
Provides user group permissions for the following post rate limiting options:
Delete - General rate limiting - delay between [deleting] posts in seconds
I don't understand how any of this shit works in the first place so apologies if I'm being a nuisance rather than helpful (j/k I've never been helpful in my life) but this kinda sounds like such addon
using proxies work as well.I donated with a gift card motherfucker
Except my post count being wrong, which isn't an issue, there's also inability to search my old posts (only ones that are counted in my post count are found, but not other), which is a minor issue, I guess.Is there any issue with mitigating the mass deletion attacks the way it was done for Konjad's account? That is, undelete posts keeping threads intact even if it breaks the post count in the userbox. I don't think it caused the same pagination issues as my manual undelete for darkpatriot's account.
Letting things happen and cleaning up afterwards is the most pro-status-quo solution that doesn't take away any user rights.
"he was French"
That's a hate crimeHow about limiting the number of ratings one can give during the day...