phpBB VS SMF VS MyBB

you said to make a backup incase it got hacked or wiped out and that won't happen if you take care.

and I assure you from the posts you have mad so far at dp that you need to learn alot more then I do.

 

I'm not sure that I understand your grammar. are you spelling made?

Are you saying that you don't agree that one should make backups often?

Nevermind, no need to answer that. You have a good night.

 

Better watch with the sarcasm, I work for security companies.

 

Oh my god I didn't hit the e key and you had to comment on that. YOu should make backups quit changing and shaping peoples words to suit you.

 

The only word that I changed was adding a e to your mad word to = made. Sometimes its hard for me to understand India grammar, sorry. (P.S. I don't mean that as a insult.)

I'm glad that you do agree with me that the OP should make backups often.

 

I Thought SMF Was/Is Supposed To Be So Safe And Secure

Just goes to show no forum software is safe, no matter what anyone tries to lead you to believe!!

 

Yeah I just made a warning thread here about that. Shame really. SMF admins are about to get hit with a lot of attacks.

 

Yes you do have a point but some systems are more secure in others in terms of code and how they handle things.

Same thing could happen to phpbb, vb, ipb, mybb, ect.

 

Huh!!

shadow82x, isn't that what my post put across....

 

Make sure your fellow SMF'ers understand this when dissing mybb as "unsafe".

Everyone is unsafe to a degree that's why it's not my top priority in choosing forum software. My priority is FEATURES and EXTENSIBILITY which Mybb has in spades. Seems like the biggest plus for SMF in this entire thread was security but if you take that out of the equation the software is well behind in terms of other much needed features.

 

I think the point of argument was SMF was safer than myBB not saying its immune to everything. Also SMF has about 4x the amount of users as myBB so of course people would like to target them first.

Typical fanboy comment BS. As far as I know SMF holds more necessary features/features imo and myBB just keeps on adding bloated features no one cares about.

Who the heck really uses ajax star rating?
Who cares about a personal pad?

What I consider Necessary that myBB doesn't hold is
- Being able to report PMs
- Mobile Mode (WAP/WAP2/IMODE)
- PM Rules/Display modes
- Being able to track posts properly
- You are able to link topics to calender and have a a full discussion on it instead of 1 message
- Letting members to be able to delete there own accounts on there own will

So dont pull the excuse that myBB has a ton more features because I think SMF has more and more useful features I should add. Let alone being very secure.

 

That's a bad argument to use because someone else can just come across and say:
- I use ajax star ratings
- I care about a personal pad

Obviously SMF has features that MyBB doesn't and MyBB has features that SMF doesn't. That also doesn't mean that MyBB doesn't have or can't have plugins to be able to get those features and vise versa.

It's also not a reliable thing to say that one software is more secure then another software. You can't measure what you don't know (you can't measure the vulnerabilities that have yet to be found in the future). Windows is the most used OS in the entire world and there are thousands upon thousands of extremely proficient professionals scouring the code day in and day out; yet there are still plenty of vulnerabilities being found and fixed.

People say Mac's are more secure [mostly] because they have less users. In a sense that is right; as in they are less likely to find those vulnerabilities and therefore you and I are less likely to be hacked by them. In another sense, that just means there are more vulnerabilities hidden in the code, waiting to be found and used by hackers.

So you can't say that less vulnerabilities found means the software is more secure. Yes, you can have less vulnerabilities to begin with but again that can't be reliably measured for scale of comparison.

Don't take this post as threatening or argumentative, because I'm not trying to be. It's become apparent to me that there are some disagreements and misconstruson of information and I'd just like to try and clear some of that up.

Ryan

 

I understand what you're saying regarding to the "safe" part of the forum, someone just needs to let this guy know...

I wonder where he is.....Must be making sure his beloved SMF is safe!!

 

I'm lurking.

The point that you're missing is that the SMF team is on it. Their primary focus is safety. And like shadowx2 pointed out, SMF is a MUCH, MUCH larger and wide base software than MyBB. If keeping MyBB small and a dead and life-less community with very few users, staying under the radar, is how they want to keep their software safe, that's a great strategy.

If these hackers are savvy enough to crack SMF, imagine what they would do to MyBB. They'd make MyBB sink like Captain Nemo and the Underwater City.

 

For anyone who doesnt know what a PHPbb can do!! Please check the forum in my Signature!!

Phpbb is as powerful as VB when you know what and how to do it!!

 

LOL!!

So you're saying that if MyBB (or any other such forum software) knew of such security vulnerabilities they would do nothing about it! If your beloved SMF was so "hacker safe" why are they having to deal with this? The point you're missing is that you've stated several times within this post thread that SMF is more secure even going so far as to say "hacker safe"! The above link from their own (SMF) support forums show differently!

You could also look at this another way, they found exploits in SMF that couldn't be found in any of the other forums software, including MyBB. Or maybe it was someone out to prove your previous posts here ("hacker safe")wrong!

Yup. and has already been stated, MyBB hasn't been running for half the time that SMF has. I'm lost as to the dead and lifeless community, but just look at it another way, the less folks using the software, the less chance of them having their forums hacked.

 

You can tell RectangleMan that. I was just saying (imho) that I felt SMF has more necessary features. Your opinions may differ.

Another big Lol. As soon as this security issue was posted the SMF team fixed it within 48 hours. Considering the amount of code edits made I would say thats very impressive. You would have to be a SMF developer to know the hard work they put into it. One developer decided to cut most of his sleep time to work on fixing this in a timely manner.

I was saying that some softwares are built more secure than others though as in their codebase.

Thanks

 

Actually it was 3 days. Go check.

Mybb released their last fix within 2-3 hours...if not sooner.

Yup yer right...some are built more secure...so why did you say this:

So ugh...if SMF was built "more secure" as you say...wouldn't you think they wouldn't take 3 days to fix one security flaw? And why was it in so much code if it's "built more secure"...

lol...you make this too easy for me.

 

I dont think you understand the concept that myBB team has been working on the package for quite some time as THEY WERE ALERTED via email before hand. The advisory was not just posted and a surprise to the myBB devs.

It was 48 hours when the devs were alerted not 3 days sorry. You even admitted yourself you thought SMF was built more securely too. I guess you have to wait until myBB reaches the size of SMF until lots of vulnerabilities are found. Even though myBB is small it still had many reports. One high risk vulnerability in 1 year does not match up to 8 critical vulnerabilities myBB has had. And SMF2 has been out in beta for quite some time and they only had what? One advisory on it.

 

@rectangleman

How is MyBB more secure..? Look:
http://community.mybboard.net/thread-39705.html 2 Medium Risk, 2 low risk
http://community.mybboard.net/thread-37792.html 3 (or more) High Risk, 7 (or more) Medium Risk and low risk
http://community.mybboard.net/thread-36022.html Medium and low, no mention of numbers, hmm...

MyBB 1.4 was released August 8th, 2008 (ref), 1.4.1 which included medium and low risk security patches was released the 17th or August, only like 9 days after it was initially released, 1.4.2 was released a month after 1.4.1, which included High Risk medium and low patches... and not to long ago 1.4.3 was released (10-28-08) with medium and low risk patches...

Now lets look at SMF... Yesterday SMF Dev Team released SMF 1.1.7 (ref) no mention of the risk, but a few in it... Now September 7th, 2008 SMF 2.0 Beta 4 and SMF 1.1.6 was released, which was mainly bug fixes, but only 1 security fix (ref)

So, in 4 months MyBB has had 3 security updates, a total of about 16-18 or so fixes, in 4 months SMF has had 2 updates, compared to SMF's 2 with about 4-5 fixes...

hmm... I must need to pay more attention in math, cause I never knew 5 was bigger then 16