[QUOTE=zzlawlzz;31428480]make a mysql table that contains that random salt with the user account[/QUOTE]
that would kill database efficiency having to do an extra join for no reason.
just have this table (vary it as you see fit)
[code]
Users:
username
email
password_sha1
password_salt
[/code]
[QUOTE=tagnara;31428451]yes[/QUOTE]What about the other thing, the use of the md5 as a salt?
[QUOTE=TerabyteS_;31428755]What about the other thing, the use of the md5 as a salt?[/QUOTE]
no
Also what about this bcrypt thingy? I'm reading that it's better to use that for login forms since it makes it much harder to crack
yes
why not SHA512?
[Thumb]http://filesmelt.com/dl/moebler.png[/thumb]
Could I get som critic on this? To me it feels maybe a bit bland but I want that sleek and white look.
[QUOTE=zzlawlzz;31428988]why not SHA512?[/QUOTE]because md5, sha1, sha256, sha512 etc. are made for fast execution, and you don't need that when encrypting passwords, so you can do a few more rounds for additional security.
[QUOTE=Candypants;31429029][Thumb]http://filesmelt.com/dl/moebler.png[/thumb]
Could I get som critic on this? To me it feels maybe a bit bland but I want that sleek and white look.[/QUOTE]
It looks great. I think it looks weird how the lower part of the page doesn't have the same width as the top part. It's not aligned.
[QUOTE=theJohn;31429196]It looks great. I think it looks weird how the lower part of the page doesn't have the same width as the top part. It's not aligned.[/QUOTE]
Oh you're right, it looks kind of wierd. How about this?
[thumb]http://filesmelt.com/dl/mobler.png[/thumb]
[QUOTE=Candypants;31429428]Oh you're right, it looks kind of wierd. How about this?
[thumb]http://filesmelt.com/dl/mobler.png[/thumb][/QUOTE]
Looks delicious! The only thing that bothers me a little on the big panel on top is that the space between the paragraph and the left border is wider than the space between the image and the right border.
[QUOTE=Candypants;31429428]Oh you're right, it looks kind of wierd. How about this?
[thumb]http://filesmelt.com/dl/mobler.png[/thumb][/QUOTE]
for the 4 lower images remove the border radius on the bottom left and bottom right corners.
[QUOTE=TerabyteS_;31429646]Looks delicious! The only thing that bothers me a little on the big panel on top is that the space between the paragraph and the left border is wider than the space between the image and the right border.[/QUOTE]
Fixed! Also aligned the bullets with the button.
[QUOTE=H4Z3Y;31429783]for the 4 lower images remove the border radius on the bottom left and bottom right corners.[/QUOTE]
Also fixed.
Not sure what I should do with this design though.
[QUOTE=Candypants;31429816]Not sure what I should do with this design though.[/QUOTE]Sell it to someone who sells furniture.
[QUOTE=Candypants;31429428]Oh you're right, it looks kind of wierd. How about this?
[thumb]http://filesmelt.com/dl/mobler.png[/thumb][/QUOTE]
Looks good! Just align the "Till toppen" button to the right...
[QUOTE=Candypants;31429428]Oh you're right, it looks kind of wierd. How about this?
[thumb]http://filesmelt.com/dl/mobler.png[/thumb][/QUOTE]
Looks really sleek! I think you should have a different font for the main paragraph text though
Whoops.
Currently working on:
[img]http://kirth.be/m/forum_cats.jpg[/img]
I'm very bad at this :(. The categories/forums are mainly placeholders, though. (Writing your own forum system, 'oh why the hell not')
[QUOTE=Kirth;31433271]Whoops.
Currently working on:
[img]http://kirth.be/m/forum_cats.jpg[/img]
I'm very bad at this :(. The categories/forums are mainly placeholders, though. (Writing your own forum system, 'oh why the hell not')[/QUOTE]To be honest it looks clean and nice. Post screenshots as png, so that you don't get the jpeg artifacts.
WebQuake - can't develop it due to lack of UDP websockets and because all floating point readers I have don't work. At this time I partially made menu, full .lmp image support and partial .wad support (loads qpics and conchars, but no miptex atm).
Flies - an original game.
What is with people and stealing my designs, they ain't even good?!
[quote]20:22 - Reag~ ♥: Hi I'd like to talk to you about [url]http://404gaming.broseph.org/[/url]
20:22 - broseph.org: sure
20:22 - broseph.org: what's up
20:22 - Reag~ ♥: I am writing this to inform you that I am the copyright owner of the design being infringed at [url]http://404gaming.broseph.org/[/url] which is hosted off your network.
The site of which the content has been stolen from is found at [url]http://tf2r.com/[/url], this letter is official notification under the provisions of Section 512(c) of the Digital Millennium Copyright Act (“DMCA”) to effect removal of the above-reported infringements.
I request takedown of the identified website and prevent the infringer, who is identified by its web address, from continuing to host the stolen design on your servers in the future.
Please be advised that law requires you, as a service provider, to “expeditiously remove or disable access to” the infringing items upon receiving this notice.
Noncompliance may result in a loss of immunity for liability under the DMCA.
I can approve that use of the material in the manner complained of here is not authorized by me, the copyright holder, or by law.
The information provided here is accurate to the best of my knowledge.
I swear under penalty of perjury that I am the copyright holder.
20:23 - broseph.org: I see
20:23 - Reag~ ♥: Not to be rude, but it doesn't help he left our analytics code in the site's source
20:23 - broseph.org: have you tried talking to him?
20:24 - Reag~ ♥: Not yet, I'd rather contact the host first which I have done
20:25 - Reag~ ♥: However as you are providing the webspace for the infringing content, under section 512(c) you are required to take it down
20:26 - broseph.org: it's not hosted in the US
20:26 - broseph.org: it will be taken care of though
20:27 - Reag~ ♥: thank you[/quote]
So minus my little derp of using a DMCA takedown on a Canadian host (forgot to check).
All went well. :v:
[editline]30th July 2011[/editline]
Wow I am lucky he agreed, just looked into Canadian copyright law and there is nothing except sending in a court order which would act as a take down notice, best you can do before going there is a formal warning.
That sucks.
I'm going on a camp tomorrow, see you in a week guys!
I don't think i recently got my reply so I'll put this here again.
Does the style look fine? or is it still an eye sore?
[url]http://zzlawlzz.com/testing/[/url]
(VERYslowly being worked on:v:)
[QUOTE=zzlawlzz;31441093]I don't think i recently got my reply so I'll put this here again.
Does the style look fine? or is it still an eye sore?
[url]http://zzlawlzz.com/testing/[/url]
(VERYslowly being worked on:v:)[/QUOTE]
What style? All I see is links spread awkwardly across the top of the page and a tiny content area with no background colour(the page is all the same colour), it needs quite a bit of work, in my opinion.
I was going to start work on Project Coquelicot for Facepunch User Authentication today by getting garry to fire an API key in my direction, but sadly he doesn't want OpenID clones for some reason (he never did reply with a reason). I'm going to throw together a basic framework so that I can plug either the FP API or, if worst comes to worst, a page scraper for manual verification (sort of like what gmod.org used to do), but I'm still confused about what I should do for the chain of trust. I know with page scraping I can just treat accounts entirely separately, but the issue comes when using the FP API as you've gotta ask for the user's credentials (and saying "these credentials aren't stored" isn't going to help much). Any ideas?
[QUOTE=leach139;31454637]I was going to start work on Project Coquelicot for Facepunch User Authentication today by getting garry to fire an API key in my direction, but sadly he doesn't want OpenID clones for some reason (he never did reply with a reason). I'm going to throw together a basic framework so that I can plug either the FP API or, if worst comes to worst, a page scraper for manual verification (sort of like what gmod.org used to do), but I'm still confused about what I should do for the chain of trust. I know with page scraping I can just treat accounts entirely separately, but the issue comes when using the FP API as you've gotta ask for the user's credentials (and saying "these credentials aren't stored" isn't going to help much). Any ideas?[/QUOTE]
well, you could have them login through facepunch although I don't quite understand your problem
[QUOTE=Ac!dL3ak;31455148]well, you could have them login through facepunch although I don't quite understand your problem[/QUOTE]
Garry's already said that he's not going to provide OpenID support on FP itself, which is what leaves me stuck. To authenticate the user and get their details, I have to send the API the username and (encrypted) password.
Also, alpha login style (I'm fucking terrible at web design)
[img]http://s.duck.me.uk/Screenshot-2011-07-31_22.38.59.png[/img]
[QUOTE=leach139;31456040]Garry's already said that he's not going to provide OpenID support on FP itself, which is what leaves me stuck. To authenticate the user and get their details, I have to send the API the username and (encrypted) password.
Also, alpha login style (I'm fucking terrible at web design)
[img]http://s.duck.me.uk/Screenshot-2011-07-31_22.38.59.png[/img][/QUOTE]
do what overv does, makes people post codes on their profiles to authenticate them
Woop I sneaked my phone in and I have internet access :D
what is coquelicot exactly
[QUOTE=anton;31456179]what is coquelicot exactly[/QUOTE]
FP User authentication, if you've ever wanted to see / verify what usergroup a user is or their postcount (or other things) you'll know why it's needed. I'm designing it to centralize how developers get access to that kind of stuff so the user doesn't continuously have to bash codes in (think oauth kind of thing)
Sorry, you need to Log In to post a reply to this thread.
