| | Re: MOTM / SOTM Voting For December Is Now Open Orion Pobursky
|
| | (...) Yes that's exactly why. The way postnuke does user authintication involves generating an authorization key. Everytime you open a form it generates an auth key and when you click submit it passes the key along with the other form data. This (...) (19 years ago, 5-Dec-05, to lugnet.cad.dev.org.ldraw)
|
| | |
| | | | Re: MOTM / SOTM Voting For December Is Now Open Jacob Sparre Andersen
|
| | | | (...) Why do everyone want to force me to work sequentially?!? :-( (the SAS booking system has even worse tasking errors) I find it very hard to beleive that there is a real need to prevent me from having multiple windows open on the same site. As (...) (19 years ago, 6-Dec-05, to lugnet.cad.dev.org.ldraw)
|
| | | | |
| | | | | | Re: MOTM / SOTM Voting For December Is Now Open Dan Boger
|
| | | | (...) Not to mention that it's trivial to bypass it if you did want to use a bot. If we need to do bot protection, we can use a captcha (similar to the way we're protecting the full installer) when votes are actually submitted. But there's no reason (...) (19 years ago, 6-Dec-05, to lugnet.cad.dev.org.ldraw)
|
| | | | |
| | | | | | Re: MOTM / SOTM Voting For December Is Now Open Travis Cobbs
|
| | | | | (...) While I agree with both of you, we should keep in mind that Orion said that this is a postnuke problem. Since the whole site is done with postnuke, I don't think there's much he can do about it, unless there's some postnuke option to work (...) (19 years ago, 6-Dec-05, to lugnet.cad.dev.org.ldraw)
|
| | | | | |
| | | | | | Re: MOTM / SOTM Voting For December Is Now Open Orion Pobursky
|
| | | | (...) I'm hesitant to use a captcha since it's just one more step in a process that's supposed to be quick and easy (i.e. it makes since to us webheads but the general user will see it as a pain-in-the-rear). I do however agree that a permissions (...) (19 years ago, 7-Dec-05, to lugnet.cad.dev.org.ldraw)
|
| | | | |
| | | | | | Re: MOTM / SOTM Voting For December Is Now Open Orion Pobursky
|
| | | | (...) Here's the reply I got on the pnForums regarding the use of the authid: The main reasons are all security related. When a form is secured using authid: 1) The form can't be faked by inserting things into the get/post array. 2) The form is (...) (19 years ago, 7-Dec-05, to lugnet.cad.dev.org.ldraw)
|
| | | | |