VNDB 2.13: Fast&Secure Spambot Relation Grouping

Posted in

#1 by yorhel
2010-11-11 at 18:47
< report >A smallish update. I normally wait with uploading a new version until I have implemented some major new feature or change, but I didn't feel like making you wait this time.

- Fixed all CSRF vulnerabilities I was aware of.
Previously it was possible for an other site owner to do some unwanted stuff like automatically making VNDB users who would visit his/her site vote on a VN, without the user knowing. To my knowledge these vulnerabilities were never exploited, so no harm has been done.

- Added an "official" flag to VN relations
This way unofficial fan fiction and other unsanctioned VNs can be linked to their originals while still making a distinction between "official" relations. This is also visualised in the relation graphs with a dotted line rather than a solid one.

- Updated producer pages to display all releases grouped by VNs.
It's possible to switch between the old and new listing with the usual "expand" link.

- Fixed the classic can't-revert-vn-image bug
Yes, you read that correctly, VN images can now be reverted without needing to be re-uploaded. The oldest and longest-known bug of VNDB has now finally been fixed.

- Added a human confirmation question to the registration page
- Some small performance improvements (server-side)
#2 by yorhel
2010-11-11 at 19:38
< report >Oops, looks like there was a bug with the reverse relation updates & the "official" flag. (v700.23, thanks to ahazkun that I noticed >.>)
#3 by novelsfan
2010-11-12 at 01:10
< report >LOL Im here because I noticed the "Added an "- official" flag to VN relations" haha, thanks for the upload, I like this official/unoffial thing
"- Fixed the classic can't-revert-vn-image bug" what does that mean? o.o
#4 by hikigane
2010-11-12 at 02:01
< report >In the old system you couldn't rollback to restore the main image.

In other words, if you changed some entry's main image, you couldn't undo.
The only way around was by re-uploading the image, creating an useless revision.Last modified on 2010-11-12 at 02:07
#5 by novelsfan
2010-11-12 at 10:46
< report >ooh... thanks =)
#6 by yorhel
2010-11-12 at 13:45
< report >To those wondering about the recent downtime of less than 30 minutes: I was performing a system update. VNDB now runs on the latest and shiniest software. :D
#7 by mateka
2010-11-12 at 22:02
< report >Thanks for the hard work :D
#8 by yorhel
2010-11-13 at 11:12
< report >And another technical update: I threw away lighttpd and replaced it with apache. Everything /should/ work fine with this new configuration, but it's possible that I broke something. Please report any issues you may find.
#9 by hikigane
2010-11-13 at 11:20
< report >Out of curiosity, why are you ditching lighttpd?
#10 by yorhel
2010-11-13 at 11:33
< report >Mainly because of the terrible documentation and lack of anything resembling a reference manual. Maintaining a lighttpd server hasn't been fun. :-(

And at the time I ditched Apache, mod_fcgid didn't exist yet and the worker MPM was highly experimental. Luckily both of these features are now stable and usable without me having to compile anything manually. :-D
#11 by hikigane
2010-11-13 at 12:45
< report >I see. I've never used lighttpd myself (I've always been using apache), but since there was some kind of hype over it i though it would be better than apache.

Since we are already in the topic, i'd like to ask which OS are you running VNDB on. Linux?
#12 by yorhel
2010-11-13 at 12:48
< report >Yes. Arch Linux.
#13 by hikigane
2010-11-13 at 13:24
< report >Didn't knew about that distribution.

I've been wanting to change to some other Linux distribution for ages, since Ubuntu is kind of failing me lately.

Arch Linux seems like a good option.
Thanks alot.
#14 by novelsfan
2010-11-13 at 18:26
< report >random comment: windows xp owns! XD
#15 by yorhel
2010-11-13 at 19:07
< report >Oh, I forgot to mention that VNDB is not accessible through HTTPS anymore. This was never properly supported and documented in the first place, but I believe some people used it anyway.
#16 by adhinferno
2010-11-15 at 06:41
< report >Yes, some people used it, just like ME !!!! :D
Thanks for your information.


You must be logged in to reply to this thread.