|
There were 2 tips/tricks. I've deleted both of them.
|
|
|
|
|
|
he could have provided a link to his nice looking web site in his user profile stuff!
|
|
|
|
|
Thanks
cheers,
Chris Maunder
The Code Project | Co-founder
Microsoft C++ MVP
|
|
|
|
|
Just a thought, would it be possible to display CP's traffic stats? Absolute figures are not necessary, just a value relative to some maximum load. That way, we could stay away for a while if the server is really bogged down (OK, we'll try to stay away).
Or maybe a server load indicator would be better suited for this.
(BTW, I mailed Sean yesterday, wonder if it got through, and not marked as junk? Address is the same one registered here)
|
|
|
|
|
We'd rather ensure that, no matter what the load, the servers could cope.
Our biggest issue at the moment seems to be that maintenance tasks are bogging things down a little during off-peak times, but we're constantly working on that too.
cheers,
Chris Maunder
The Code Project | Co-founder
Microsoft C++ MVP
|
|
|
|
|
Well, that's the ideal solution, I was thinking more about when the inevitable occurs. (maybe a hidden option for regulars? )
Anyway, let us know if there's any way to help (I'm in the off-peak time zone)
|
|
|
|
|
If you did things properly first time there would be no problems!
(Ducks for cover.)
------------------------------------
I will never again mention that I was the poster of the One Millionth Lounge Post, nor that it was complete drivel. Dalek Dave
CCC League Table Link
CCC Link[ ^]
|
|
|
|
|
I'm not positive but the tags surrounding my username seem to be causing a bug when I answer questions. There is a blank where the username should be. Is this a bug or a feature?
"Activity 1 sec ago by .... "
I am not certain but the ellipses may be caused by username length. Would it be possible to *render* the text or maybe strip the tags?
Best Wishes,
-David Delaune
|
|
|
|
|
Randor wrote: or maybe strip the tags?
You could do that yourself by removing the code tags - problem solved!
|
|
|
|
|
DaveyM69 wrote: You could do that yourself by removing the code tags
Well I was under the impression that allowing tags in usernames was a feature of the website. My username has contained formatting tags for several years. If I was mistaken just let me know and I will remove them.
Best Wishes,
-David Delaune
|
|
|
|
|
We trim the name if it's too large but do not have in place sophisticated parsing to try and trim just the display portion of the HTML. I've trimmed out some unnecessary spaces from your name so we'll see how that goes.
cheers,
Chris Maunder
The Code Project | Co-founder
Microsoft C++ MVP
|
|
|
|
|
Hi guys,
Can someone explain to me how I can update my article description to include angle brackets?
I've tried to escape the brackets by using < but also without success...
Cheers,
Elmar
|
|
|
|
|
Which article?
cheers,
Chris Maunder
The Code Project | Co-founder
Microsoft C++ MVP
|
|
|
|
|
Take a look at this. There are whopping big blank areas inside the code snippets, and one or two have a nested collapse button. Could it be a bug?
Enhanced String Handling[^]
-- edit --
OK they are gone. That was quick!
(good thing there is a revision history, for a moment I thought I imagined it)
BTW, can't we volunteer for minor fixing jobs like this?
modified on Thursday, November 25, 2010 3:09 AM
|
|
|
|
|
It was a case of bad formatting. All fixed.
You can absolutely volunteer to be a fixer-upper editor. Email sean at codeproject.com and he'll put you through a gruelling test ("you want to help editing? Great - here are the keys")
cheers,
Chris Maunder
The Code Project | Co-founder
Microsoft C++ MVP
|
|
|
|
|
Done.
|
|
|
|
|
|
It seems to be pretty original content, since google and bing don't return any other hits on this particular exploit.
If it's genuine, then it's certainly concerning that there's such a loophole. If so the article should not only remain but it should be voted up into noticeable prominence so it gains enough visibility for someone at Microsoft to take a look into the issue.
|
|
|
|
|
An alternative could be to send it to MS right away (and the software security providers such as McAfee), and maybe quarantine it here for a week or more, before making it public. We might not want to become a front-line resource for malware authors, that is what I was thinking.
|
|
|
|
|
Luc Pattyn wrote: We might not want to become a front-line resource for malware authors, that is what I was thinking.
I agree. Also, his choice of username is not particularly comforting and while it might be a stereotype his profile-country is one that's well known for many such exploits.
|
|
|
|
|
I certainly agree that a quarantine on this article would be wise considering the content.
The fact that this is a brand new user with an interesting choice in username just reinforces my thoughts on this.
I wasn't, now I am, then I won't be anymore.
|
|
|
|
|
MS are aware of this issue and are investigating
But yes, i agree, CP does not want to become a hunting ground for this type of content, otherwise it will start being blocked by the corporations and it will ruin the party for everyone.
I would prefer to see the article pulled, no matter how good it is. If we as a community do not even tolerate people discussing how to break captcha robots, then surely privilege escalation is worse!
|
|
|
|
|
From an article standpoint, I thought it very good one. The author provided well explained code and a good proof of concept example. The fact that it represents a security exploit leaves me not feeling good, but the only way to get them fixed is to educate people about the existence of these exploits. The article hits that nail squarely on the head.
Chris Meech
I am Canadian. [heard in a local bar]
In theory there is no difference between theory and practice. In practice there is. [Yogi Berra]
posting about Crystal Reports here is like discussing gay marriage on a catholic church’s website.[Nishant Sivakumar]
|
|
|
|
|
IF the article was describing a patched vulnerability I'd be much less concerned (the curious could create a vulnerable VM for the purpose). Publishing a zeroday exploit without proof that the software authors are willfully refusing to fix it negligent at best.
3x12=36
2x12=24
1x12=12
0x12=18
|
|
|
|