• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

2014 Forums Migration To Xenforo

fonz

Son of Beastie

Thanks: 368
Messages: 2,560

#76
  1. It's being worked on.
  2. Click "Insert" (to the left of the CMD button) -> Code.
  3. Merged into the migration topic that was already there.
 

danger@

Administrator
Staff member
Administrator
Moderator
Developer

Thanks: 339
Messages: 977

#78
Is it a big problem, to make a clickable "Code" tag? I think it's the most used tag. All other needed tags are there, but no "Code". It's annoying to write it per hand. (Or where have you hidden it?)
Should be fixed by wblock@ now ;)
 

wblock@

Administrator
Staff member
Administrator
Moderator
Developer

Thanks: 3,607
Messages: 13,850

#82
Try BlueFreeBSD, which is the default XenForo style with a few small adjustments. If there are other XenForo styles you like, point us to them. Unfortunately, I don't think there is any way for users to create new styles.
 

Dies_Irae

Active Member

Thanks: 58
Messages: 136

#83
A big "Thanks!" to all the admins for the great work done! I really like the new forum software.

I've noticed a strange behaviour in the popups that shows up when you hover the mouse over a thread's title. If I go to "Recent Posts" (for example) without being logged in, the popups shows (as expected) a preview of the first message. Now, if I open another tab on the browser, log in, and come back to the first tab (without reloading the page), every popup not previously viewed (browser's cache seems to work ;)) shows this message:
Code:
The following error occured:
Security error occurred. Please press back, refresh the
page, and try again.
I think it's only a cookie issue, and I don't really care because from my point of view this is nothing more than a silly detail. I just noticed this behaviour on Firefox.
 

beatgammit

Member

Thanks: 13
Messages: 78

#84
I've noticed that there's no default redirect from HTTP -> HTTPS, which means things like logins are insecure by default. Could this be changed to redirect to HTTPS?
 

asteriskRoss

Well-Known Member

Thanks: 132
Messages: 417

#85
Is there a way to list recent posts once I've logged in like the phpBB forum? I know there is "New posts" but once I've clicked on one, it's not new anymore and so disappears from the list.
 

knopwob

New Member


Messages: 1

#90
Huh? How could HTTPS requests NOT be encrypted?
Because all the relevant information is in the request URL which by itself is not encrypted. Only the response from the server comes back encrypted. So if somebody is reading your traffic, he can see which topics you previewed.
 

tzoi516

Well-Known Member

Thanks: 12
Messages: 368

#92
Is there a flat theme available without all of the annoying JavaScript pop-ups? I've given the new forum code a try, and I know missed features are back, but I feel like I'm on a wedding forum instead of a software-based forum.
 

junovitch@

Daemon
Developer

Thanks: 609
Messages: 1,773

#93
Because all the relevant information is in the request URL which by itself is not encrypted. Only the response from the server comes back encrypted. So if somebody is reading your traffic, he can see which topics you previewed.
The host name is in the clear when the certificate exchange takes place but the full URL doesn't go across until an SSL connection has been made. Only "forums.FreeBSD.org" is visible.
 

wblock@

Administrator
Staff member
Administrator
Moderator
Developer

Thanks: 3,607
Messages: 13,850

#95
After using some other forums recently, I've come to really, really, really appreciate that XenForo takes me to the first unread message in a thread. It's a huge usability improvement.
 

youngunix

Active Member

Thanks: 33
Messages: 203

#96
forums.freebsd.org accepts on port 443 these ciphers:

Code:
    TLSv1  256 bits  DHE-RSA-AES256-SHA (preferred)
    TLSv1  256 bits  DHE-RSA-CAMELLIA256-SHA
    TLSv1  256 bits  AES256-SHA
    TLSv1  256 bits  CAMELLIA256-SHA
    TLSv1  128 bits  DHE-RSA-AES128-SHA
    TLSv1  128 bits  DHE-RSA-CAMELLIA128-SHA
    TLSv1  128 bits  AES128-SHA
    TLSv1  128 bits  CAMELLIA128-SHA
    TLSv1  128 bits  RC4-SHA
    TLSv1  128 bits  RC4-MD5
    TLSv1  112 bits  EDH-RSA-DES-CBC3-SHA
    TLSv1  112 bits  DES-CBC3-SHA
The RC4-* ciphers are regarded as obsolete. I suggest reviewing this.
I might be underestimating the importance of security on a forum site, but you should run the same test on paypal.com. Now that website's security needs some serious auditing.
 

youngunix

Active Member

Thanks: 33
Messages: 203

#97
youngunix
I do not get your point, if there is any. This thread is about forums.freebsd.org
That's because you failed to get the point behind yours and to read what I posted.
My reply is specifically to your post, not to the entire thread.
Your post shifted the focus to a particular topic; Security. Hence my reply.

Hope that helps ;)
 

kpa

Beastie's Twin

Thanks: 1,682
Messages: 6,084

#99
Is there a way to turn off automatic saving of draft messages? I find it sometimes annoying that when replying on a thread my initial reply that I canceled first time is still there and I have to remember to clear it.
 

DutchDaemon

Administrator
Staff member
Administrator
Moderator
Developer

Thanks: 2,621
Messages: 11,217

Is there a way to turn off automatic saving of draft messages? I find it sometimes annoying that when replying on a thread my initial reply that I canceled first time is still there and I have to remember to clear it.
AFAICS, only forum-wide, and I'm not going to do that.
 
Top