Remove Ad, Sign Up
Register to Remove Ad
Register to Remove Ad
Remove Ad, Sign Up
Register to Remove Ad
Register to Remove Ad
Signup for Free!
-More Features-
-Far Less Ads-
About   Users   Help
Users & Guests Online
On Page: 1
Directory: 31
Entire Site: 4 & 1542
Page Staff: pennylessz, pokemon x, Barathemos, tgags123, alexanyways, supercool22, RavusRat,
05-21-24 11:36 AM

Forum Links

Related Threads
Coming Soon

Thread Information

Views
1,110
Replies
5
Rating
2
Status
CLOSED
Thread
Creator
Davideo7
01-04-23 02:44 PM
Last
Post
EX Palen
01-07-23 07:20 PM
Additional Thread Details
Views: 838
Today: 0
Users: 24 unique
Last User View
12-09-23
DJ Styles

Thread Actions

Thread Closed
Order
 

Implemented Security

 

01-04-23 02:44 PM
Davideo7 is Offline
| ID: 1399079 | 294 Words

Davideo7
Level: 351


POSTS: 45036/45323
POST EXP: 3473262
LVL EXP: 813349681
CP: 191392.6
VIZ: 121638149

Likes: 2  Dislikes: 0
I've implemented some extra security to the site. A hacker discovered a few exploits 2 months ago, and was kind enough to show me what the exploits were, and how to fix them. If you're reading this hacker, thanks again, and feel free to email me or contact me if you notice anything else.

If anyone notices any issues with the site that started occurring after this update, please let me know ASAP so that I can fix it.


Securing the Inputs
I've updated the script that analyzes and cleans any data that gets inserted into the database. I also updated the headers of the site, which can be viewed in the staff exclusive content below.
(Content hidden from non-Staff members!)


Securing the Passwords
I've updated the site's password encryption. The old was very outdated. The new one makes it so much more difficult to crack a user's password.

NOTE: User passwords will only use the new encryption after a user changes their password (and for new users). So, I highly recommend everyone update their Vizzed password at some point, if you want to ensure your account is more secure. I'll eventually make an alert that reminds each user to change their password.


HTML Cleaner
I'm utilizing HTMLPurifier for most input that involves HTML. This analyzes any HTML that gets submitted to the site, removes anything that might be potentially malicious, and also fixes the HTML if there's anything broken. Inputs that would utilize this include Posts, various profile editing, etc.

This also allowed me to eliminate the z tags that sometimes get placed into various thread titles, posts and other sections of the site.
I've implemented some extra security to the site. A hacker discovered a few exploits 2 months ago, and was kind enough to show me what the exploits were, and how to fix them. If you're reading this hacker, thanks again, and feel free to email me or contact me if you notice anything else.

If anyone notices any issues with the site that started occurring after this update, please let me know ASAP so that I can fix it.


Securing the Inputs
I've updated the script that analyzes and cleans any data that gets inserted into the database. I also updated the headers of the site, which can be viewed in the staff exclusive content below.
(Content hidden from non-Staff members!)


Securing the Passwords
I've updated the site's password encryption. The old was very outdated. The new one makes it so much more difficult to crack a user's password.

NOTE: User passwords will only use the new encryption after a user changes their password (and for new users). So, I highly recommend everyone update their Vizzed password at some point, if you want to ensure your account is more secure. I'll eventually make an alert that reminds each user to change their password.


HTML Cleaner
I'm utilizing HTMLPurifier for most input that involves HTML. This analyzes any HTML that gets submitted to the site, removes anything that might be potentially malicious, and also fixes the HTML if there's anything broken. Inputs that would utilize this include Posts, various profile editing, etc.

This also allowed me to eliminate the z tags that sometimes get placed into various thread titles, posts and other sections of the site.
The Owner
Owner, Developer, Advertiser, etc
Founder, Mod, Investor


Affected by 'Laziness Syndrome'

Registered: 12-06-04
Location: Wisconsin
Last Post: 29 days
Last Active: 3 days

    Post Rating: 2   Liked By: Barathemos, supercool22,

01-04-23 02:49 PM
Davideo7 is Offline
| ID: 1399082 | 48 Words

Davideo7
Level: 351


POSTS: 45037/45323
POST EXP: 3473262
LVL EXP: 813349681
CP: 191392.6
VIZ: 121638149

Likes: 0  Dislikes: 0
Staff : I expect all of you to change your password so that your accounts are more secure. One of the accounts that the hacker was able to get into was a staff account. So I want to eliminate the possibility of any other hackers hacking into staff accounts.
Staff : I expect all of you to change your password so that your accounts are more secure. One of the accounts that the hacker was able to get into was a staff account. So I want to eliminate the possibility of any other hackers hacking into staff accounts.
The Owner
Owner, Developer, Advertiser, etc
Founder, Mod, Investor


Affected by 'Laziness Syndrome'

Registered: 12-06-04
Location: Wisconsin
Last Post: 29 days
Last Active: 3 days

01-04-23 03:44 PM
Kid Danger is Offline
| ID: 1399086 | 12 Words

Kid Danger
Enzo Matrix
Level: 42


POSTS: 394/399
POST EXP: 26416
LVL EXP: 499160
CP: 2689.9
VIZ: 115853

Likes: 0  Dislikes: 0
Davideo7 : i agree with you about hacking & hackers should get punished
Davideo7 : i agree with you about hacking & hackers should get punished
Vizzed Elite
Super Local
https://www.vizzed.com/boards/images/ranks/paragoomba.gif


Affected by 'Laziness Syndrome'

Registered: 08-24-13
Location: Swellview
Last Post: 488 days
Last Active: 15 days

01-04-23 04:40 PM
EX Palen is Offline
| ID: 1399090 | 139 Words

EX Palen
Spanish Davideo7
Level: 137


POSTS: 5842/6188
POST EXP: 1096583
LVL EXP: 30688787
CP: 188085.9
VIZ: 10673976

Likes: 0  Dislikes: 0
Well, given how I created this account nearly 10 years ago with the very basic passwords I could come up with by then, I guess it was way due for me to change it.

We were lucky that this hacker wasn't malicious. Normally, people with this kind of knowledge tend to cause harm and exploit the power they believe to have. The times when they actually want to help it's a huge step forward for the targeted place, and the changes brought up here are the best proof of it.

Davideo7 : (Content hidden from non-Staff members!)
Well, given how I created this account nearly 10 years ago with the very basic passwords I could come up with by then, I guess it was way due for me to change it.

We were lucky that this hacker wasn't malicious. Normally, people with this kind of knowledge tend to cause harm and exploit the power they believe to have. The times when they actually want to help it's a huge step forward for the targeted place, and the changes brought up here are the best proof of it.

Davideo7 : (Content hidden from non-Staff members!)
Administrator
Site Staff Manager, Content Writer, Console Manager
Vizzed #1 Hardstyle fan


Affected by 'Carpal Tunnel Syndrome'

Registered: 07-03-13
Location: Barcelona, Spain
Last Post: 22 hours
Last Active: 22 hours

01-05-23 11:55 AM
Davideo7 is Offline
| ID: 1399142 | 27 Words

Davideo7
Level: 351


POSTS: 45039/45323
POST EXP: 3473262
LVL EXP: 813349681
CP: 191392.6
VIZ: 121638149

Likes: 0  Dislikes: 0
EX Palen : Exactly. The hacker went out of his way to give me full details of what he found, and how to fix what he found.

(Content hidden from non-Staff members!)
EX Palen : Exactly. The hacker went out of his way to give me full details of what he found, and how to fix what he found.

(Content hidden from non-Staff members!)
The Owner
Owner, Developer, Advertiser, etc
Founder, Mod, Investor


Affected by 'Laziness Syndrome'

Registered: 12-06-04
Location: Wisconsin
Last Post: 29 days
Last Active: 3 days

01-07-23 07:20 PM
EX Palen is Offline
| ID: 1399261 | 81 Words

EX Palen
Spanish Davideo7
Level: 137


POSTS: 5851/6188
POST EXP: 1096583
LVL EXP: 30688787
CP: 188085.9
VIZ: 10673976

Likes: 0  Dislikes: 0
Davideo7 : (Content hidden from non-Staff members!)
Davideo7 : (Content hidden from non-Staff members!)
Administrator
Site Staff Manager, Content Writer, Console Manager
Vizzed #1 Hardstyle fan


Affected by 'Carpal Tunnel Syndrome'

Registered: 07-03-13
Location: Barcelona, Spain
Last Post: 22 hours
Last Active: 22 hours

Links

Page Comments


This page has no comments

Adblocker detected!

Vizzed.com is very expensive to keep alive! The Ads pay for the servers.

Vizzed has 3 TB worth of games and 1 TB worth of music.  This site is free to use but the ads barely pay for the monthly server fees.  If too many more people use ad block, the site cannot survive.

We prioritize the community over the site profits.  This is why we avoid using annoying (but high paying) ads like most other sites which include popups, obnoxious sounds and animations, malware, and other forms of intrusiveness.  We'll do our part to never resort to these types of ads, please do your part by helping support this site by adding Vizzed.com to your ad blocking whitelist.

×