Sign in to follow this  
crimson fury

[web] Forum engine?

Recommended Posts

crimson fury    133
Me and some friends need a forum engine. PHPBB is okay, but it doesn't have the extra features we need. Normally, I could code something like this, but that would take a lot of time and energy for something that might end up inferior. So here's a snip from our conversation about the forum... I'd appreciate if you tell us if you know of a forum engine like this. Thanks in advance.
Quote:
ben says: we want a money system on the forum Narcoleptic by day, Insomniac by night says: tell me about this money system ben says: we're not sure how customizable the forum can be but we need a good scripter ben says: well ben says: people make posts to earn money ben says: with the money ben says: (or forum currency) ben says: they could buy upgrades for their acc, equipment, pets, etc.
So there you go. Main point is this: - need virtual money system - need to be able to 'buy' virtual upgrades

Share this post


Link to post
Share on other sites
Sander    1332
Use phpBB with the Cash Mod. I don't see any mods that add ways to spend the cash, but phpBB is very easy to modify. The code is quite clean and easy to follow. You can quite easily build something like that yourself.

Share this post


Link to post
Share on other sites
markr    1692
There are many mods to PHPBB.

The problem is, PHPBB isn't modular at all. Its code is an unholy mess, typically written as one huge piece of code in the body of each PHP file (rather than using subroutines).

Moreover, it's written to use register_globals on (I know it works with it off, but it simply does a hack to effectively turn them back on), so everything is a global and anything could have come from a cookie, post, get etc. This makes it error-prone to do anything to anything.

A lot of the mods available are of very low quality, and will typically break other functions of the forum, particularly if you apply more than one.

Finally, most of the mods available are not in the form of machine-readable "patch" files, but rather human-readable "manual patch" files. These are extremely tedious to apply and it's easy for either the authors or the person applying them to have made a mistake, resulting in a broken forum.

PHPBB has a very bad security record, but compared to its mods, it's very good. Almost every mod contains numerous sql injection vulnerabilities, but because the mods aren't used very much, they aren't publicised.

Mark

Share this post


Link to post
Share on other sites
Sander    1332
Quote:
Original post by markr
The problem is, PHPBB isn't modular at all. Its code is an unholy mess, typically written as one huge piece of code in the body of each PHP file (rather than using subroutines).

It's just a style of coding. I happen to like it.

Quote:
Moreover, it's written to use register_globals on (I know it works with it off, but it simply does a hack to effectively turn them back on)

Wrong. It's the other way around. There's code in place that kills all global variables in register_globals is on. Check common.php.

Quote:
A lot of the mods available are of very low quality, and will typically break other functions of the forum, particularly if you apply more than one.

That depends. If you stick to the mods in the phpBB mods database then you're relatively safe (unless you intend to install many of them).

Quote:
Finally, most of the mods available are not in the form of machine-readable "patch" files, but rather human-readable "manual patch" files.

Check out EasyMod. It's an installer for mods. All mods in the phpBB mods database should work with EasyMod unless stated otherwise.

Quote:
PHPBB has a very bad security record

As with any piece of software, you have to update it if there's a patch out. I really can't feel sorry for people who've lost their boards and blame phpBB's "bad" security while they were still running 2.0.6 when 2.0.10 and up were out.

phpBB isn't bad. It's just abused and misused a lot.

Share this post


Link to post
Share on other sites
Binary1010    103
Quote:
Original post by Sander
phpBB isn't bad. It's just abused and misused a lot.


This is why some hosts have started banning it (see phpbb.com news section). I think this stems from the fact that it is open-source; if you have the source code, what can you not make something do?

Share this post


Link to post
Share on other sites
markr    1692
The hosts are banning it because of its poor security record. Being open source does not imply that it is necessarily good or bad.

The main problem is that the code is such an unholy mess, it actively resists attempts to audit it.

Moreover, the authors didn't really think ahead much and use a proper templating or database query system, it's all just done ad-hoc.

Mark

Share this post


Link to post
Share on other sites
Binary1010    103
No, it's quite clearly stated that the Invisionfree forum system is based on Invision Power Board. After all, who in their right mind would give free hosting for a $170 product?

Share this post


Link to post
Share on other sites
it costs $70 for a 1 year lisense, that means you get updates for a year, but you can run the board forever. and it is paid for by the ads at the top

I see invisionfree does their own thing, but there are many companys that host invision power board for free. here are some free invision hosts:
http://ipbfree.com/index1.php?
http://www.invisionplus.net/
http://www.freeibboard.com/

Share this post


Link to post
Share on other sites
Talonz    178
I like Invision Power Board. It's just something I'm familiar with, not to mention it has more features that I know of. You can get the free one called 1.3 final - it was the last free version released. All the 2.x versions cost money now if you aren't doing the trial.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this