Jump to content
Sal's RuneScape Forum
  • entries
    18
  • comments
    365
  • views
    29,824

About this blog

Home of the Santa Fish.

Entries in this blog

 

Dear Sals Community,

Hi all. The last few weeks have been pretty crazy, and I'm sure you've all noticed my drop in activity around the forums and website. There have been rumours that I was whisked away on a last-minute expedition to locate the last Santa Fish in the Antarctic. And, even more bizarre, are rumours that I was critically wounded by Micael Fatia and his oversized, trusty sabre during a freak swordfighting accident. Neither of these rumours are true, of course, but I do owe you all an explanation.   Back in March, I was contacted by a recruiter who specializes in... recruiting (for lack of a better word) for technical positions. After several interviews over the phone and in person, I was offered a job as a software engineer for a medium-sized travel company (which is like a startup, but not a startup)!   It's been really awesome working there so far; people are very friendly and it's a really laid-back place to work. I can honestly say that I'm happier now than I was before. There's just something about working at a great company, with people who share your interests... I feel like I've turned a page in my life... something that a year ago, I believed I'd never be able to accomplish (for reasons that I won't go into here).   The only (and I mean, only) part that is a pain is the commute. It's about 1.5-2 hrs each way, which is murder. :P So I'll likely be moving closer this summer which is also a huge change. It'll mean I have more time for myself and hopefully to work on the site... But that's for another time.   So, that's my story.

Salmoneus

Salmoneus

 

Dear Steven Seagal,

Please get back in shape and at least attempt to do your own action scenes. Voiceovers are not cool.   I used to look up to you in old movies like Out for Justice and Above the Law, but your movies from the last decade are just despicable. -.-

Salmoneus

Salmoneus

 

Did Hannah Poison Deb?

*** DEXTER SPOILER ***   *** READ AT UR OWN RISK ***     So in episode 11 of the current season of Dexter, Deb ends up getting in a car wreck because she fell asleep at the wheel. She's currently on some kind of anti-anxiety meds (was it Xanax?) but she insists that it was impossible for her to have overdosed, and she immediately blames Hannah for poisoning her.   The question I pose to you, Dexter fans, is whether Hannah really did poison Deb, or was it someone else? The way I see it, Deb was willing to do anything to get Hannah out of the picture, off the street, and out of Dexter's life. This was the perfect way of doing it; since even Dexter can attest to Hannah's method of killing by poison, and it's pretty much an airtight case.   But, if Hanna did poison Deb, wouldn't Deb be dead, rather than just having a couple of bruises? Hannah has never messed up like that before... she always gets her kill (like Dexter).

Salmoneus

Salmoneus

 

Search Improvements!

If you've used the search function of the board since we upgraded to IPB 3 -- searching topics, posts, blogs, viewing new content, or finding another member's content -- you've probably noticed that searches have taken an extraordinarily long time to complete. A simple search for "falador" (searching posts) took on average 38 seconds! Clearly, this is an unacceptable amount of time to spend searching, not to mention resource-intensive for the server.   The problem is that our posts table is several GB in size and growing daily. That's a lot of post data to search through, and it takes a really long time -- even with proper database indexing and fulltext searching (which is usually quite speedy).   The solution: Sphinx, an open-source search server built with performance, particularly with larger sets of data, in mind. Last night I integrated Sphinx with IPB, which was actually pretty easy. It took a little while for Sphinx to index all of our searchable content (less time than I thought, however), but after setting it up and running quite a few searches to test the system out, I found that searches took a fraction of the time to complete. Searches that previously took almost 40 seconds to complete now take between 0.5 and 2 seconds, a tremendous improvement over the built-in IPB search!   One of the best parts of this is simply the fact that Sphinx plays nice with the server. It doesn't eat up a lot of RAM or CPU, and the SQL server isn't tied up searching for a lengthy amount of time.   Therefore, I've decided to decrease the search flood time from 20 seconds (30 seconds for New Members) to 10 seconds. We'll trial this for now and see how it goes, but I don't think it will negatively impact the server's performance very much. I've also decreased the minimum word length to 2 characters, just because it's possible now (it was possible before with a bit of tweaking, but when speed/performance is an issue...).   I hope you all find the 'new' search function to be an improvement over the previous one! If you have any questions or comments, please post them! :D   Thanks for reading!

Salmoneus

Salmoneus

 

Sal's Offline

I'm sure that a lot of you noticed that Sal's was down for most of the day (the forums; the website was fine). Firstly, I apologize for that - I didn't intend for that to happen.   Last night, I was running some routine server maintenance; mostly software upgrades, in the hopes that I could sort out the issue with slow loading times on the forum lately. One of the software upgrades required some of our database tables to be updated, which didn't go quite as expected. Our posts table, which is several gigabytes in size, ended up getting corrupted and couldn't be repaired. I ended up having to revert to the last good copy from before the software upgrade (which was made only hours before) so that I could re-import all topic/post data back into our database. After that, posts and topics needed to be resynched and recounted, and the caches needed to be updated.   It took hours, but we're back online now, with only a small handful of posts from early this morning lost (sorry about that guys).   Note to self: Never use a GUI to repair a large (> 100MB) database table - it just doesn't work.

Salmoneus

Salmoneus

 

So, What's Next?

I bet you all thought I was crazy after reading my last blog post - the delusional ramblings of a Santafish that has spent too much time in the sun, who had finally cracked under the pressure of trying to release the new website. Alas, fear not! I may be strange, maybe even a little crazy, but there's never a dull moment!   Anyhow, we have lots of plans for the very near future!   First and foremost, we need to start getting new content added to our website! For quite awhile now, I've been unable to add new content to the site because of synchronization issues. It was nearly impossible to add content to the old site, and then re-format it for the new (then-unreleased) website. Likewise with corrections - keeping two guides updated at the same time is a LOT of work, which explains why gobs of corrections and updates have made their way onto the new site, but were not visible on the old site. We all need to work together to get our guides up-to-date, and I'm really looking forward to getting new and updated content added to our site once again!   The forum upgrade is already in the works, which will bring all sorts of new features and fixes to our board. And of course, new forum = new skins! Likewise, blogs will be upgraded and there will be many new options available to all you bloggers! Of course, no data will be lost - topics, posts, blog entries, post count, display names and whatnot will all be preserved - it's just an upgrade. We'll still be using IPB, albeit a newer version. Maybe the upgrade will solve our mangled BBcode problems once and for all!   We also have new calculators and tools in the works! Monster and NPC Databases are up next and once we get our content and forum updated, work will finally commence on these projects. Don't give up on submitting info!   As you can see, we have some big plans for this year (as alluded to in our December 2010 News Post)! The site overhaul is just the beginning of things to come!

Salmoneus

Salmoneus

 

Philosophy

So, I've been doing some more soul-searching since my last post. I've just been trying to find myself in an ever-more-confusing world. I've been reading a lot, as well as spending days at a time becoming one with nature, rock climbing in Nevada, white-water rafting along the Chattooga River, exploring ancient ruins in Greece, and I think I've made some progress.   It came to me in a vision: If a website is updated, but nobody is around to see it, does it make a sound? no, no, no, that's not right... no, it was: If a *NIX webserver gracefully reboots on its own due to a kernel update, but there are no incoming TCP requests on port 80, does it ever boot up again?   Well, it was something like that...

Salmoneus

Salmoneus

 

@@ Sexy Nude Photos @@ ( Leaked Site Refresh Info )

Word on the Street says that the "Big Site Update" (aka the "Site Refresh"; aka the "Site Rennovation"; aka the "Site Overhaul"; aka "Operation Colonel Sugar-lemons") is just a big hoax... a fairytale that we'll one day tell our own children about, and they'll tell their children about, and so on and so-forth, passing down from generation to generation stories of what could have been, but never was. Or perhaps it's something that you and I, or you and another Sal's member, might discuss during casual conversation on a train, in a coffee shop, or at a ski lodge in Aspen years from now. You'll reminisce about all the good times here at Sal's, and then the topic of the alleged Site Refresh will come up. One of you will laugh and say "Oh, that Salmoneus, what a meanie; he got our hopes up and never came through with the Site Refresh!", and then you'll both continue on your way, trying to forget about the elusive Site Refresh.   It's a good thing that Word on the Street is wrong -- dead wrong. He's been unreliable in the past, and that's certainly the case now. Operation Colonel Sugar-lemons is in full-effect, and is very close to completion. In fact, it's so close, I can taste the sugary-lemon goodness right now. It's only a matter of time (not long) before you'll be tasting the fresh sugary-lemon goodness yourself.   Of course, I could be lying to you, trying to buy myself enough time to get out of the country and disappear for awhile before an angry mob comes looking for me. Perhaps I'd go backpacking around Europe for awhile... Or, I could catch some rays on a white sandy beach...     I promised nude pics, so here we go...   Desireful took this one without my consent when I wasn't looking:         Hawt, right?   And here's a pic of Ms. Todo, showing everything (full frontal, uncensored):         That is, everything we have left to do before we get the new site released (what were you thinking?).   So as you can see, Operation Colonel Sugar-lemons really is coming along. It really *is* going to happen, and it will hopefully be online soon. It all depends on how quickly we can tackle Ms. Todo.   Thanks for sticking with us while the overhaul has progressed, and I sincerely apologize for taking so long and neglecting the current site. I'll keep you all posted on updates!   Cheers!   Sal

Salmoneus

Salmoneus

 

Runescape Reference In White Collar

Last night was the season 2 finale of the tv show White Collar, where a con artist (Neal) works for the FBI and helps to solve various art-related crimes to stay out of prison. Anyways, there was a reference to RuneScape at the start of the episode, where Neal and Mozzie (Neal's best friend) are listening to a music box with a coded message hidden inside the playing tune, and Moz says something like:     I just thought it was cool that RuneScape was mentioned here! I wonder how many people Googled "runescape" (or "roonscape") after hearing it? :D

Salmoneus

Salmoneus

 

Status Update: Site Refresh

By now, I'm sure that many of you are wondering "What in blazes ever happened to that Site Refresh project Sal announced years ago?" Rather than boring you with excuses as to why it's taken so long, I'll give a rundown of what kind of progress has been made, and what sort of stuff needs to be done before the Site Refresh is complete.   Firstly, the Site Refresh is more than just a redesign of the current site layout; it's a combination of all the ideas and suggested improvements for the site, all mixed into one big update. This may sound like it may not be much, but it really is, considering that all of our custom site scripts (which are entirely separate from the forum) need to be completely re-coded from the ground up to work with our content management system.   So, what has been done so far? Well...   1. The item database has been completely overhauled to include lots of new search features, the ability to compare multiple items with one another, and integration with the grand exchange (meaning prices should always be up to date!). There are a slew of other neat features too, but I don't want to give them away just yet.   2. We also have a decent submission system now so that you can submit corrections to a guide right from its own page (among other features).   3. The calculators have been completely redone (yes, again) in PHP and JavaScript so that they no longer lag RuneScape, and are now immensely easier for us to update and maintain. The current Java calculators are brutal to update (which was poor design on my part :( ), so something relatively easy to work with is definitely a welcome change.   4. The poll system has been completely rewritten to be easier for us to maintain and add polls.   5. One of the biggest and most sweeping changes the site will see is the new site design. It's fresh, bold, and RuneScapey (it's an adjective, look it up! :( ), and I think it suits Sal's Realm nicely. It opens up all sorts of possibilities for us in terms of navigation and organization of the main site, which is definitely a good thing!   So, what sorts of things still need to be finished?   First, many of the items in the item database need to be "normalized" so that certain bits of info currently in one field of the database are stored in the [new] appropriate field. This makes it possible to search just about every item field easily.   Second, the skill calculators need to have their content manually added to them, and later checked for accuracy.   After all that, the actual site content (guides and other pages) needs to be cleaned up, checked for accuracy, and imported into the content management system. This will give us a chance to reorganize guides, restructure them, and remove any unnecessary or completely outdated guides from the site. And of course, the entire site will need to be tested out before going live.   As you can see, there are lots of big changes coming to the site, and they are indeed on their way. Thanks for being so patient y'all! I'll be sure to post more information as the update comes along further. :lol:

Salmoneus

Salmoneus

 

Where Are All The Updates?

Alright, I thought I should post something about this now, since a few members have messaged me asking what's going on with the site. I'm sure you've noticed that site updates over the last few months have been limited to guides for new quests/miniquests and a handful of rewrites. I'm sure that many of you have also noticed that the submissions forum has almost ground to a halt in terms of accepting content and getting guides/corrections added to the site.   There are two main reasons behind the lack of updates recently. First, the big site update. It's coming. I was working on it last summer and got a decent potion done, but unfortunately college cut my time short on the project, and I haven't really had a chance to do very much until this June, when classes ended. And of course, at the end of July my laptop broke down, and has since been in Laptop Limbo over at HP's headquarters... and I'll probably never see it again. Fortunately I'm able to borrow one from a friend, but it's definitely not ideal for the programs I run on it. :( I've been focusing most of my free time on the site refresh this summer, and that's more or less what's been going on.   ~   Anyways, a little background on the site refresh (which is what I'll call it from now on). Basically, the site is currently made up of a whole bunch of HTML files, all located on my pc. Whenever a change needs to be made on a page, it needs to be uploaded to the site's server. If I wanted to make a global change to every page on the site (like a banner change, or a layout change), every page needs to be updated manually and re-uploaded. This isn't a problem on a small site, but there are hundreds of pages that make up this site.   Needless to say, it's difficult to maintain. There's no way to have another person help maintain it, simply because the HTML files and images must all be synchronized at all times between everyone maintaining the files, or otherwise one person's changes could be overwritten by another's . The answer, of course, is to use a CMS (content management system) to manage the content and users. No more uploading HTML files -- instead, changes can be reflected instantly, and updates to the site should be much faster than they are right now.   What I've been working on so far is the coding part to integrate our custom scripts (the item database, poll system, and a NEW submissions system) with the CMS. Just to make it clear, the CMS isn't custom-coded. Initially, I wanted to write a custom system for this site, and I managed to get the basics down for users/group management. But really, with the amount of stuff I have left to do with this project, and the amount of thought and time that needs to be put into such a system, I decided to use a pre-made CMS (more like a framework, actually, with everything I need to get the project going). After all, this isn't just a re-design as I initially planned. The entire item database is getting an overhaul with lots of new features (and hey, the clickable headers sort now! :) ), and will be easily integrated with the monster database when it goes online. The content itself is going to be totally re-structured and reorganized. In the end I think the site is going to be much more usable and more up to date than ever, which is the entire purpose of the site refresh.   In short, the site is a bit behind right now, but once the refresh is complete, it isn't likely to happen again. :)   And no, Man, there's no development diary or screenshots this time. :)   Thanks for reading! :D

Salmoneus

Salmoneus

 

High Scores: Take #2

Do you know that feeling you have when you've poured a lot of time and effort into something, and when you're "finished" you're almost certain that you have all of the kinks ironed out, but you're still worried that maybe you missed something, or forgot to fix that one thing that you told yourself to make a note of but didn't? Well, that's how I felt before putting the high scores online today. :) TBH, I was afraid that the server would explode because of the strain from the high scores (or maybe just get super laggy like before :P ).   What bothered me the most was not knowing *what* the exact problem with the other high score system was, so that I would know what -not- to do when writing a custom high score system for us. What if the server simply couldn't handle another component being added to this busy forum? Or maybe the server just dislikes the idea of playing fetch with the RS Hiscores (server, go fetch! :P ). But it looks like the server is doing just fine, no apparent disasters, and the high scores have been up for almost three hours now without an incident.   The one thing I noticed about this high score system (Well, fansite high score systems in general) is that your combat level is going to be skewed if your combat stats aren't appearing in the highscores. For example, if you have 29 summoning, 59 defense (ie. not ranked) and are magic-based (or anything-based, for that matter), you're combat will probably show up as being lower on any fansite highscore system. It can't take into account those unranked levels, so it assumes they're 1. The only way around that, of course, is to allow members to fill in their own highscore data. :)   As for new features:   I plan on allowing you to sort the members by any field (name, level, xp, rs rank, and sals rank). (thanks Wiltinplant)
Maybe (and this is definitely a maybe) I'll add the ability to fill in fields that aren't listed on the RS HS. (thanks Definition)
  It's a short list so far, but if you have any other suggestions, feel free to post them here! :)

Salmoneus

Salmoneus

 

Ahhh, Winter Break At Last!

It's that time of year again... WINTER BREAK! (plus it's my second blog post of the year as well (out of three), but that doesn't count)     For the last month I've been totally swamped with college-related stuff. Registration for next semester was actually a piece of cake, and I'll be taking pretty much all of the classes I wanted to take: Unix Systems Programming, Discrete Math 1, Physical Science (with a lab <_< ), Technical Writing, and a 3D Design class. Very cool. Final exams and final projects have been taking up most of my time this month. My favorite final project was for my Data Structures (computer science) class -- we were supposed to make a very simple text-based version of Frog Solitaire, and I actually went ahead and created a graphical version of it with drag 'n' drop functionality. Needless to say, my professor was impressed. Calculus 2 didn't fare as well, and for the past week and a half I've been studying for the final by basically going over everything we've learned with a fine-tooth comb, reorganizing my notes (in effect, rewriting them so that they're actually useful, as opposed to a glob of random thoughts and problems scratched into a shredded scrap of paper), retaking all of the tests we've been given, and redoing all of the problems in the textbook. I think it's safe to say that I've devoted at least 20 (probably close to 30) hours of time to that exam. And yes, you might call me completely insane, but it's the only way for me to actually understand the material. But all of the other finals went fine, and I'm pretty confident on those. <_<   My inactivity has obviously shown on both the forum and site, and for that I apologize. I'll be much more active in the coming weeks, and I already have a number of things to work on to make up for being away. :/   ===   Firstly, the RS High Score system. For those who don't know what happened: a couple of weeks ago I installed a high score system on the forum to replace the one currently hosted on Runehead. Shortly after installing the IceFuzion Hiscore, the forum and site slowed down to a crawl, and I had no choice but to disable it. I honestly have no clue what's up with it, and after looking at the code I can't see what might have caused the problem. My first though was that a database query was using up too many resources, and if too many people were all accessing the hiscores page, it could easily bring the server down. But I couldn't find anything in the code which could do that. Secondly, I noticed that the database design itself is extremely inefficient (in more ways than one...), but it doesn't seem like it could cause that much of an issue. Plus, the fact that there were only two members actually *in* the hiscore system when things went crazy makes me believe it's something in the code. :closedeyes:   But anyways, I've decided to write a custom high score system just for us, and potentially release it for free eventually. I have a few ideas that I think would be pretty cool to have included, and if YOU have any ideas for a high score system, feel free to leave a comment here and I'll see if I can add it in.   Next up would have to be the big site overhaul. I haven't had a chance to seriously work on it for over two months, and it really needs to get done. Rewriting all of the code on the site is taking ages, but it's coming along, and I really think it will be time well spent when it goes online.

Salmoneus

Salmoneus

 

Ah, The Joys Of May

It's been a half-year since I've posted anything in here, and figured this would be a good time to start posting again. Over the past two weeks I've gotten lot of pm's: angry pm's, worried pm's, spammy pm's (for instance "yo sal, wut kind of waffles r better: blueberry or chocolate???" - obviously chocolate, without a doubt ). The worried and angry messages were more or less about me not being active around here very much recently. Although I've managed to be active for at least a little while each day, this month has been... not very fun.   First was registration for next semester's classes, which for some reason gets some people stressed out. The process goes something like:   1. Set up an appointment with your adviser. 2. Pick out some classes to take and bring that list to your adviser. 3. Get the registration form signed to get your online registration activated, and sign up for your major classes. 4. The next week is for minor/general registration - so any classes not related to your major (like distribution courses) would be registered now. If you're not a junior, hope that there's still room for you in those classes! 5. Take a deep breath - you made it through one of the worst weeks of the year. :glasses:   Now, normally I'm one of the procrastinators - the people who wait until the second to last day before major registration to talk to the adviser. Not a good idea. Well, I suppose it depends on your major - generally, math classes fill up rather quickly, so for poor souls like myself (CS major = tons of math), if we wait until the last minute, all the math classes get filled up. I did it early though, so I managed to sign up for my Calculus II class without a hitch.   As for recently, I've been totally (well, almost totally) focused on final exams (particularly for Calculus I). I've always hated math... Ever since the days of Geometry (*nightmare*). Calculus is some heavy stuff...derivatives, integrals, related rates, volume/area of intersected graphs via shells and disks... although, the only things that I ended up not 'getting' was the "related rates" and "rate of change" stuff, but still, that was a big chunk of the class. So I've spent the last week or so preparing for the exam, which counts as about 45% of our grade, and today I took the test, which lasted abut 4.5 hours. How did I do? Well, we'll have to see. :closedeyes:   --   Basically, that explains my inactivity for the past 2 weeks. This weekend I'll get to the page and some-odd number of corrections that have been posted, and I'll be able to go through the submissions board to check on the guides that have been posted/updated. Since my calculus class is finished now, and my other finals probably won't be much of a problem, I'll hopefully be more active now. And once classes are completely over, I'll be able to really get working on the huge site update I have planned. I'll post tidbits here as I get things sorted out.

Salmoneus

Salmoneus

 

It's 2006 - Why Do These Things Still Happen?

Let me start off by saying that I, by no means, am a perfect programmer. I've made my fair share of mistakes, but I've learned from them and try my best not to make those mistakes anymore. None of the applications I've programmed are "mission critical" by any means, but I've always worked hard to develop both structured and secure code.   On December 1, IPS discovered that there was a security hole (yet another...) which allowed an SQL Injection attack to take place. For those of you who have no clue what that means: basically, the forum software uses PHP and MySQL as a programming language and a database backend. That's how all of the posts and information is stored. Everything you do, from posting replies and topics, to sending a PM, to viewing a profile, is all done using magical things called "queries." A query is a piece of code that executes, and there are a number of different types. Now, it's possible to "poison" a query so that it does something totally different from what it was supposed to do, by using all sorts of techniques. Basically, an SQL Injection is doing just that.   Anyone who writes any type of application, whether in PHP or JSP or whatever, should know that this type of thing can happen, and it can be devastating. When you're dealing with any kind of script that takes input from a user, you must always treat the input as evil/dangerous!! How many times does it need to be said? All input should be properly filtered and cleaned before doing anything else with the script... it's that simple. And it's not even that difficult to do... so why must these kind of attacks happen?   Lets take a look at the most recent exploit. It had to do with a UNION SELECT query -- that is, a query which essentially combines multiple SELECT statement (it gets data from the database, rather than INSERTing or DELETEing (yes, I know, it's spelled wrong, but for clarity :P )). Ok, let's take a look at the code from modules/blog/lib/entry_reply_entry.php (an IPB file, and this code is displayed on their forum for a manual fix):   //------------------------------------------------- // Do we have the information needed //------------------------------------------------- if (!isset( $this->ipsclass->input['eid'] ) or !intval( $this->ipsclass->input['eid'] ) ) { $this->ipsclass->Error( array( LEVEL => 1, MSG => 'missing_files') ); } //------------------------------------------------- // Load the entry //------------------------------------------------- $this->entry = $this->ipsclass->DB->build_and_exec_query( array ( 'select' => '*', 'from' => 'blog_entries', 'where' => "entry_id = {$this->ipsclass->input['eid']}" ) );   What this does, essentially, is it takes the input from a form field and checks to make sure that it's set, and... well, there's your problem. Let's look more closely:   if (!isset( $this->ipsclass->input['eid'] ) or !intval( $this->ipsclass->input['eid'] ) ) { $this->ipsclass->Error( array( LEVEL => 1, MSG => 'missing_files') ); } The if statement does two things: isset - a PHP function that checks to make sure that a variable is set.
intval = checks that the user's input has an integer value in it.
Okies, we can do something with that. Next, IPB uses something called a "wrapper" for their database, which is supposed to make queries easier to write. Here it is:   $this->entry = $this->ipsclass->DB->build_and_exec_query( array ( 'select' => '*', 'from' => 'blog_entries', 'where' => "entry_id = {$this->ipsclass->input['eid']}" ) ); Ok, so it's saying "Hey MySQL, let's do something! I want you to get me all the data from the blog_entries table where the entry_id is whatever the user typed in." Obviously, this is NOT what they wanted, but someone messed up on something so simple as this. WHY is this not what they wanted? Let's look at it this way. Intval returns "true" if there's an integer to be found in whatever input there is. So If I said "1", "aa1", or "bob1jhk", it would return "true". If I said "aaa", it returns false because there's no number in there! And because there's no cleaning of data during the query, it's so easy to inject code into it.   In the context of this vulnerability, it took place in the blog system when posting a reply. The form contains the field "eid" in it, and requests the blog entry's id. I won't post the actual vulnerability code, but what happened was that it was possible to insert a UNION SELECT query into the field's value (with of course, the blog id as an integer, so it would pass the check), submit the form, and come up with the blog owner's password (simply speaking).   It angers me how this type of thing still happens, even after all the security issues companies have had in the past. We're on the verge of 2007, and things are still the same. I know that programmers make mistakes (I do to!), but there should be some quality assurance and checking of products before they're released, especially because of examples as simple as this one. Basic input filtering and type checking should always be done on any and all user input, and would eliminate a huge number of vulnerabilities in the software. It's not just a pain to patch, but it's a pain to fix AFTER the damage has been done, too.   Thanks for reading. :P

Salmoneus

Salmoneus

 

More Blog Stuff

I think I'm going to mostly post development news in this blog, both for the forum and website. Maybe when I start playing RuneScape again I can post my stats and other RS-related stuff in here, but for now I'll stick to development news. :P   Well, the blogs have almost made it a full 24 hours without a major incident, and it looks like they're being enjoyed by a good number of members here. I knew they're be a good addition! To those of you who don't know what to post, or who aren't big on blogging: you could always post your RuneScape achievements, graphics stuff, writing, music, whatever you'd like. It's all for fun! :D   Anyways, I have a couple of things to do today. First, I've got to change the mismatched graphics for nearly all of the blog buttons, since they don't match any of the skins. That means that I have about 16 buttons to change for each skin, and there are 9 skins in total that I need to modify. What a pain! It would be super easy if the skin creators provided a PSD of their buttons that I could use to make new ones, or even just a blank one, so I'm going to hop over to IZE and see what I can find for our skins.   Next, I'm going to see what I can do with the banners. Each banner is generated dynamically for each blog, so the first time anyone views your blog, the server basically puts together a logo just for you using the images provided (generally a logo and background), and some text. What's really cool is that I can change the font too, using any TrueType font. A bunch have already been provided by IPS, so I'm gonna go through them and find the ones which fit each skin and use that one instead of the default one. Maybe I can do something about the outline too, which doesn't look good on certain skins.   If anyone notices anything else that needs to be fixed, please post a comment in here (or even in the feedback board) so I can fix it. :P   To my interns (oh, I wish!) - I take three sugars in my coffee, and I love the ham and cheese HotPockets - keep 'em comin'!

Salmoneus

Salmoneus

 

First Entry - What A Day!

You know, leave it up to me to make something that should've taken about 30-45 minutes to set up to take all night! :( Sure, the instructions seemed clear: upload the files and run a quick installer. Okies. Little did I know that the quick install would take all night. Partially because of my own negligence, and partly because... well in a way, the instructions were slightly cryptic at the same time.   Firstly: the images. Naturally, all skins don't come with ALL the files you might need for the different addons you can get for IPS products (like the blog, gallery, etc). The actual set of files IPS gave included them all, but I didn't even think to upload them to ALL of the skins (stupid me, but oh well :D ).   Next was an issue with the banners. Oddly enough, all of them (save for 2: the default IPB skin and the "Inspire" skin, which is the one I always use) were overlapping the blog's title! More or less, it has to do with how IPS had coded the template for the heading - they float an image to the very left of the screen (for example, the piece of paper at the top of my blog). When you float an image, it no longer takes up any "room" in the container, thus causing everything to fold up and get all distorted. A simple fix is to insert something like a line break and clear it, to tell the container to stretch over it. Easy enough, I guess. After all that, I decided to go for the "dynamic" banners, which look a bit nicer.   After that, I realized that the banner backgrounds were messed up and didn't match the skins. And then my internet decided to die. Occasionally it'll just quit loading pages when I'm in the middle of something important, and it stays broken for several hours until it decides to fix itself. I hate it! But yes, I just managed to get back on, fix the images, and here I am now.   I wonder what I'll post about next time... until then,   -Sal

Salmoneus

Salmoneus

×

Important Information

By using this site, you agree to our Guidelines and Privacy Policy.