phpBB VS SMF VS MyBB

Shadow82x, you quoted this in one of your previous posts...

Then added this as a reply...

I'm missing something here so please try explaining what your reply had to do with what you were quoting?

Let me explain my post again to you. I was trying to put over the fact that it had been determined that SMF indeed had security exploits....This despite everyone here being told by a certain person that SMF was/is hacker safe. That's pretty much what you quoted from my post, then replied beginning with "Another big Lol", then going on to saying that SMF had worked on fixing the "security issue".

The bottom line is that your "Another big Lol" post bit had absolutely nothing to do with what you quoted above it!

But hey with Aldo replying above, we've finally found someone who has more sense about the whole thing, and has at least admitted to the fact that SMF is indeed as suspect to potential security problems as any other software forum programs out there.

As for the time it takes to fix the problem, that doesn't matter so long as we forum owners can realize that the problems will be resolved whenever!

 

Well of course all forum softwares have security problems, its just, some have more then others. Its just like Presidential Candidates its not who is the best, but who is the least worst xD if that makes sense

 

agreed. security loop holes are there is almost all of the Free/paid forum softwares..


hell.. even operating system has loop holes.. but i must say i have used phpbb.. its really need a lot of attention to fix each and everything bit and pieces., whereas SMF is simple, give you great Mods, themes etc and easy to install and a great support forum where everyone knows how to get around a problem and fix it.

~RoH

 

Sorry was really tired when making that post. I'm sure we all had our days when we messed up on posts eh?

I'm sorry but where did anyone say SMF was safe from any type of attack? I simply said SMF was more secure than myBB. I never said SMF was immune to attacks. That would just be a silly comment, wouldn't it be? And since when did I or others admit that there is no security issue? Seems like your making it up as you go.

Yes the SMF1.1.7 patch was released a few days ago.

 

Indeed. It took all of 2 seconds to press one hyper-link to activate 1.1.7. Another great feature about SMF. Superb security, intuitive control panel and any option available one may want/need on their forum. And best of all... free.

 

http://www.simplemachines.org/community/index.php?topic=272393.0

Timestamp Sept 5th 8am. He states his posts were deleted so it could have been minutes or even hours before hand they actually knew.

Timestamp for 1.1.7 Release
http://www.simplemachines.org/community/index.php?topic=272861.0
« on: November 07, 2008, 04:28:59 PM »

http://www.milw0rm.com/exploits/6993
# milw0rm.com [2008-11-04]

It wasn't within 48 hours...it was 3 days. Another liar that brings half-truths to a discussion. That's 2 SMF fans proven as false. What say you sir? I continue to bring facts to light here while SMF fans bring conjecture.

 

Please don't call my a lair because I got this info from a developer

So as far as I know when the developers began working it was a 48 hour period.

Your saying I'm not? o-0

 

You really need to read the whole post thread here, then "perhaps" you'll understand why things are being said here!

Had the software been so "hacker safe" like you've stated many times, and upgrade wouldn't have been needed. But hey, now that it's been fixed you can carry on with your BS here trying to say how such a great software it is, even despite that being proved wrong! As for it being free, you make it sound like no other forum software is....You really don't come across as a very good salesperson, especially with the lies and false accusations!

 

Didn't you pay attention? No one has said that SMF had/has absolutely no security holes what-so-ever. If you took it in that manner then its solely your fault and not that of us. You're being so biased that you're dissecting what people are saying against whatever the heck it is you use (forum system) and taking it literally.

 

As stated in that thread, the post in question was moved to a staff/team board in order to conceal further exploration of the exploit until it was fixed.

The bug, could for all reasons, have been addressed within 48 hours but the patch not released until a couple days after to ensure other bugs/exploits that were found could be addressed as well.

This is an obvious tactic that almost all forum software take practice in.

 

Didn't you read ALL the posts here?

Let me just quote one part form one of your SMF supporters...

That's just one quote, I could show others but would rather you take the time to read EVERY post here before jumping to false conclusions!

The above quote would "fool" anyone into thinking that SMF could never be hacked into. That has been proved totally wrong, perhaps you might want to explain to the guy who keeps posting such tripe, that his statements are not exactly true, rather than try telling us that we're dissecting posts, which by the way isn't just done by me, so that's kinda like a mute point!

 

Uh, if someone told me something was hacker safe, I wouldn't think that its impossible to be hacked... I would take it as its very secure... Nothing is safe.

 

Of course you wouldn't think it impossible to be hacked, but the whole point is why would ANYONE think of making such a statement, especially when it comes from someone who supposedly knows what they're talking about. Saying such things doesn't look good towards anyone who is maybe just venturing into the field of creating forums, far from it! It's very deceiving!

As for "I would take it as its very secure", all forums are very secure, as very secure as they can be until proved differently, as with the case of SMF having to deal with being hacked recently.

 

If all forums were very secure, then why would we be having such a discussion in the first place if they were all equal in security...

 

Ignore him. Clearly he only signed up to troll DP. His goal is to ruffle feathers and get the community members banned.

If he was truly happy with his MyBB forum, he'd be on it managing his members and enjoying his community. Obviously, his time is spent on here to make trouble. Most kids take Ritalin for that very same issue. /just saying...

98.9% of all his posts were TROLLING THIS THREAD

 

Well I guess the discussion went on for so long because someone keeps saying that a particular forum software is safe/hacker free. Unfortunately that same person just so happened to admit that he was in "lurk mode" after it was reported here that the same software had indeed been hacked. AFAIK no one else has repeatedly said that SMF is secure/hacker safe....Why? Because just like you, everyone else and me, know darned well that no software is anymore secure than the others

Clearly the only feathers getting ruffled are yours, and that's most likely because your beloved SMF was proved to not being hacker safe and you didn't like that, so you resort to sarcastic comments just like you've done in the past. If I wanted to get anyone banned here, do you really think I'd be wasting my time posting replies when there's other methods to do that. Nah, I just like to see folks being honest when they make posts, not leading others "up the wrong path"! Also, isn't this an open discussion? Why would anyone want anyone else banned for that?

Awww, share the love, you could say just the same about yourself, or for that matter anyone else here. I'd like to bet that your post count in this post thread is way higher than anyone else!

Please do try to provide links that work.

 

i personally like SMP
i just think it looks better

but VB is way to go for a bigger true forum

 

Umm yeah... We have mind-control powers so we can control the amount of publicity we get.

To say that a software must be so "elite" in the cracking and hacking world is something I would only ever hear from a complete fanboy that knows absolutely nothing about programming and security.

The situation with 1.4.3 was a one off and you make it and twist it to sound much worse then it was in reality. If you look at our previous security records you would see that we absolutely fix all vulnerabilities in under 48 hours, most much sooner then that as well, including vulnerabilities that we were not alerted of beforehand.

Our code was never professionally audited before 1.4.2. Therefore a lot of problems where patched and fixed. Also 1.4 was a huge code-base change to our previous releases. IIRC, SMF 1.1 was built off of 1.0 which was built off of previous beta's and RC's. Of course it's going to be more stable then that. SMF also has been out a lot longer then MyBB, and before SMF existed it was YaBB and before that it was another project (I forgot the name). So as you can see they have had a ton more experience in the forum industry then others. It is only natural that everyone goes through the stages.

 

I wonder if any SMF or phpBB developers sign up to DigitalPoint to make a post or 3?

 

All it takes is one quoted post to make your above (check Members post count) statement null and void. To think it's even on the same page that you make the statement makes it funnier, you couldn't even be bothered to look for yourself. I could probably find more through the pages here, but like you I can't be bothered.

Talk about someone trolling forums, you could teach a few folks about doing that, I just hope they don't learn from your behaviour (sp) here!