But I understand. You gave up everything you had to find me. And you found me broken. It's hard for you.

River ,'Safe'


Buffistas Building a Better Board ++

Do you have problems, concerns, or recommendations about the technical side of the Phoenix? Air them here. Compliments also welcome.


Gudanov - Dec 07, 2016 3:03:00 am PST #3890 of 4671
Coding and Sleeping

I started a branch for migrating to the pdo mysql driver. There are two reasons for doing this. One is that it will close a security vulnerability and two is that the current mysql driver was removed from PHP 7 so we can't upgrade with the old driver. Then I can work on removing another vulnerability and fixing registration and logout.

When I get further along, I can set up a staging board for doing some testing.

I'd be more specific out the vulnerability, but I don't feel comfortable explaining how to attack the site in public.


Laura - Dec 07, 2016 7:01:23 am PST #3891 of 4671
Our wings are not tired.

Hanging garlic and crosses about might help. t unhelpful


Jon B. - Dec 07, 2016 10:32:05 am PST #3892 of 4671
A turkey in every toilet -- only in America!

migrating to the pdo mysql driver

Is that the mysqli vs. mysql thing?


Gudanov - Dec 07, 2016 11:22:58 am PST #3893 of 4671
Coding and Sleeping

Sort of. There are three PHP mysql drivers. The old mysqld which was removed from PHP 7.0. Mysqli and the PDO Mysql. The PDO driver is pretty much the standard one nowadays.


Jon B. - Dec 07, 2016 6:18:12 pm PST #3894 of 4671
A turkey in every toilet -- only in America!

Got it. I thought this article explains well the work involved.


Gudanov - Dec 08, 2016 4:37:51 am PST #3895 of 4671
Coding and Sleeping

Yep. That's what I've started doing. I'm also moving all the database interaction into a set of database access objects so it won't be mixed in with the rest of the code.


amych - Dec 08, 2016 1:22:45 pm PST #3896 of 4671
Now let us crush something soft and watch it fountain blood. That is a girlish thing to want to do, yes?

Yeah, good choice, even if we hadn't needed to update drivers.


Jon B. - Dec 08, 2016 3:37:34 pm PST #3897 of 4671
A turkey in every toilet -- only in America!

I'm also moving all the database interaction into a set of database access objects so it won't be mixed in with the rest of the code.

Good move. I imagine that'll make bootstrapifying the pages a bit easier.


Gudanov - Dec 09, 2016 4:40:33 am PST #3898 of 4671
Coding and Sleeping

There's also some weird stuff going on where tables are being created. I think that can be eliminated with some better indexing.


Calli - Dec 09, 2016 10:11:22 am PST #3899 of 4671
I must obey the inscrutable exhortations of my soul—Calvin and Hobbs

If I can be helpful in beta testing or the like, please let me know.