Early beta release: Project Alpha Webpage

[ande]

I once made an implementation in which every user had to login with username + password + secret. Then, the hash was calculated with a SHA256-HMAC(password, secret), and username + hash were sent to the server. I was never sure about if that was secure or not, so I finally removed it.

Btw, looks amazing

It wouldn't be secure because you would have to send the secret to the client, thus making it possible to sniff. However I guess you COULD implement some sort of asymmetric encryption request to get the secret, by generating a new key on the client side every time and sending the public key. (Actually not a bad idea).

Indeed, I was just wondering when my uber leet posts and super hardcore gmod status will be transferred. Although I imagine it won't be until the final release is out.

Full conversion of the old data wont be done before we have a good release candidate.

[ca0s]

It wouldn't be secure because you would have to send the secret to the client, thus making it possible to sniff. However I guess you COULD implement some sort of asymmetric encryption request to get the secret, by generating a new key on the client side every time and sending the public key. (Actually not a bad idea).

Secret was chosen by the user when registering, and never sent to the server (password was hashed then).But this is off-topic here.

[ande]

Secret was chosen by the user when registering, and never sent to the server (password was hashed then).But this is off-topic here.

But the user or javascript would have to know the secret in order to perform the hashing. But you are right, this is off-topic. We could create a new client side hashing/encryption thread?

[Zesh]

Hi there!
Just want to let you know that a early beta version of our new site can be found at:
http://alpha.evilzone.org

Merry xmas!

That popup is already annoying. Every EZ page I visit makes it show up. Can't you make it a one time thing?

[The Alchemist]

Had been waiting to see this awesome thing from such a long time.
A few quick questions :
1) Did you guys build it up with a PHP framework or its entirely simple PHP?
2) Aren't you guys going to use slug urls?
3) It says that ande ate up all the cookies, does that mean there'll be no cookie system? Or everybody will start from 0?

[ande]

That popup is already annoying. Every EZ page I visit makes it show up. Can't you make it a one time thing?

That's odd. It is only supposed to show once. What browser are you using?

Had been waiting to see this awesome thing from such a long time.
A few quick questions :
1) Did you guys build it up with a PHP framework or its entirely simple PHP?
2) Aren't you guys going to use slug urls?
3) It says that ande ate up all the cookies, does that mean there'll be no cookie system? Or everybody will start from 0?

1) Not using any existing framework. Built from scratch.
2) As in SEO friendly URL's? Maybe, its been discussed in the new board (feedback board I think)
3) Thats just bluechill having fun lol. There will be some sort of cookie/karma/reputation system. Not sure how it will work yet.

[vezzy]

I have the same problem, on Firefox 25.0.1. The alert box appears on every single topic I access.

Your best bet is to leave a notice on the header or something less intrusive. Alert boxes are a relic of old that needs to die.

[ande]

I have the same problem, on Firefox 25.0.1. The alert box appears on every single topic I access.

Your best bet is to leave a notice on the header or something less intrusive. Alert boxes are a relic of old that needs to die.

Done.


EDIT:


Introducing beta of the new upload service: http://upload.alpha.evilzone.org/


Featuring:
- 1GB size limits for files and 30MB for images
- Upload with your account to look at download and view statistics as well as being able to delete files you have uploaded
- Support multiple files
- No file extension limit

[lucid]

Is this accessible from EZ Alpha? Doesn't seem to be.

[ande]

Is this accessible from EZ Alpha? Doesn't seem to be.

Just updated the links at the "awesome stuff" page so that they link up. You can login with the same account, but if you are logged in at alpha.evilzone.org you should already be logged in.


EDIT: The beta upload service now supports multiple files

[lucid]

Cool! Can't wait for the other Awesome Stuff stuff to be implemented. Specially the WebOs and EvilTerminal.

[ande]

Cool! Can't wait for the other Awesome Stuff stuff to be implemented. Specially the WebOs and EvilTerminal.

Ill see if I cant do some work on those tonight

[theellimist]

Man I am really stoked to see this stuff, great work!

[kenjoe41]

Ez, growing too enormous i pity those in its way. This is awesome stuff, hope its not copyrighted cos alot of copycats are coming.

[bluechill]

Ez, growing too enormous i pity those in its way. This is awesome stuff, hope its not copyrighted cos alot of copycats are coming.

They'll do a bad job, everything is from scratch so they can't really copy it...