Da Board

General Chatter not related to any other Topic
User avatar
United States of America Bubbathegimp
Site Admin
Site Admin
Reactions:
Posts: 1492
Joined: Sun Jan 12, 2014 10:18 pm
Location: Off Plumb
Contact:

Re: Da Board

#11

Post by Bubbathegimp »

Heu Knowz....
The ones that know how to have any fun are all behind da Paywall...
This Place is no Zed, But of course it was never meant to be....
Da Gubamint Taketh
Da Gubamint Giveth Away
User avatar
United States of America Bubbathegimp
Site Admin
Site Admin
Reactions:
Posts: 1492
Joined: Sun Jan 12, 2014 10:18 pm
Location: Off Plumb
Contact:

Re: Da Board

#12

Post by Bubbathegimp »

W9FTV wrote: Thu May 30, 2019 11:37 pm
Bubbathegimp wrote: Thu May 30, 2019 10:40 pm I thought I would try blocking the Chinese Nike spammers etc by adding The list of Chinese IP addresses in Web.config, BUT Da board seemed to be taking a hit on speed...
There is a new extension in development that is supposed to do the same thing, so I installed it to try out, and removed the info from the config file.
Hopefully I didn't screw the pooch,....
Nah, being rugged induhvidualists, we'll live. :Grin: It's kind of strange that hitting the reply button takes far longer to render the reply screen than just quoting to reply tho. Methinks DB optimization problems, but I'm not a DBA so take it with a big grain of salt.
I'll try almost anything once, A few things 3 or 4 times if I like it well enough.
I did a quick search on the phpbb Support site. another person was having the same problem. Search was using phpBB built in native search, and was recommended that he change the search settings to use MySql Full text search instead...
I made the "Recommended" tweaks...see what else I can come up with.....
Da Gubamint Taketh
Da Gubamint Giveth Away
User avatar
United States of America W9FTV
Site Admin
Site Admin
Reactions:
Posts: 799
Joined: Wed Sep 26, 2018 3:14 pm
Location: Conjuction Junction
Contact:

Re: Da Board

#13

Post by W9FTV »

Is there a DNS block list module for the board software? If it exists, it might be worth a shot. I use a few here at Maison Foobar to block spam email. They're pretty damned effective.
The downside is that you'll take a hit on performance.
Success is not final, failure is not fatal: it is the courage to continue that counts. --Winston Churchill
Never ring the bell. -- Adm William McRaven
User avatar
United States of America Bubbathegimp
Site Admin
Site Admin
Reactions:
Posts: 1492
Joined: Sun Jan 12, 2014 10:18 pm
Location: Off Plumb
Contact:

Re: Da Board

#14

Post by Bubbathegimp »

Yup, a recent in development extension called "Filter By Country"..
I know we would take a little hit (Especially a shared server), But shouldn't be as bad as using web.config to block, and the IP Address list is updated automatically weekly instead of needing to do it manually...Linky
Da Gubamint Taketh
Da Gubamint Giveth Away
User avatar
United States of America W9FTV
Site Admin
Site Admin
Reactions:
Posts: 799
Joined: Wed Sep 26, 2018 3:14 pm
Location: Conjuction Junction
Contact:

Re: Da Board

#15

Post by W9FTV »

Interesting. I'll have to try it out through my VPN.
Success is not final, failure is not fatal: it is the courage to continue that counts. --Winston Churchill
Never ring the bell. -- Adm William McRaven
User avatar
United States of America W9FTV
Site Admin
Site Admin
Reactions:
Posts: 799
Joined: Wed Sep 26, 2018 3:14 pm
Location: Conjuction Junction
Contact:

Re: Da Board

#16

Post by W9FTV »

What countries do you have blocked, Bubba? I'm coming in from India right now.
Success is not final, failure is not fatal: it is the courage to continue that counts. --Winston Churchill
Never ring the bell. -- Adm William McRaven
User avatar
United States of America Bubbathegimp
Site Admin
Site Admin
Reactions:
Posts: 1492
Joined: Sun Jan 12, 2014 10:18 pm
Location: Off Plumb
Contact:

Re: Da Board

#17

Post by Bubbathegimp »

Just China (Asshole Spammers)
been up all night fucking with the board, Can you tell??
Starting to generate a couple minor errors so I gotta backtrack...
Da Gubamint Taketh
Da Gubamint Giveth Away
User avatar
United States of America W9FTV
Site Admin
Site Admin
Reactions:
Posts: 799
Joined: Wed Sep 26, 2018 3:14 pm
Location: Conjuction Junction
Contact:

Re: Da Board

#18

Post by W9FTV »

Bubbathegimp wrote: Fri May 31, 2019 10:29 pm
W9FTV wrote: Thu May 30, 2019 11:37 pm
Bubbathegimp wrote: Thu May 30, 2019 10:40 pm I thought I would try blocking the Chinese Nike spammers etc by adding The list of Chinese IP addresses in Web.config, BUT Da board seemed to be taking a hit on speed...
There is a new extension in development that is supposed to do the same thing, so I installed it to try out, and removed the info from the config file.
Hopefully I didn't screw the pooch,....
Nah, being rugged induhvidualists, we'll live. :Grin: It's kind of strange that hitting the reply button takes far longer to render the reply screen than just quoting to reply tho. Methinks DB optimization problems, but I'm not a DBA so take it with a big grain of salt.
I'll try almost anything once, A few things 3 or 4 times if I like it well enough.
I did a quick search on the phpbb Support site. another person was having the same problem. Search was using phpBB built in native search, and was recommended that he change the search settings to use MySql Full text search instead...
I made the "Recommended" tweaks...see what else I can come up with.....
Replies seem to render much faster now.
Success is not final, failure is not fatal: it is the courage to continue that counts. --Winston Churchill
Never ring the bell. -- Adm William McRaven
User avatar
United States of America Bubbathegimp
Site Admin
Site Admin
Reactions:
Posts: 1492
Joined: Sun Jan 12, 2014 10:18 pm
Location: Off Plumb
Contact:

Re: Da Board

#19

Post by Bubbathegimp »

New Htaccess
Options All -Indexes

# protect .htaccess
<Files ~ "^.*\.([Hh][Tt][Aa])">
Order allow,deny
Deny from all
Satisfy all
</Files>

# secure .htaccess file
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

# BEGIN GZIP COMPRESSION
<IfModule mod_gzip.c>
mod_gzip_on Yes
mod_gzip_dechunk Yes
mod_gzip_item_include file \.(html?|txt|css|js|php|pl)$
mod_gzip_item_include handler ^cgi-script$
mod_gzip_item_include mime ^text/.*
mod_gzip_item_include mime ^application/x-javascript.*
mod_gzip_item_exclude mime ^image/.*
mod_gzip_item_exclude rspheader ^Content-Encoding:.*gzip.*
</IfModule>
# END GZIP COMPRESSION

# TN START ENABLE KEEP ALIVE
<ifModule mod_headers.c>
Header set Connection keep-alive
</ifModule>
# TN END ENABLE KEEP ALIVE

# TN - START EXPIRES CACHING #
ExpiresActive On
ExpiresByType text/css "access 1 month"
ExpiresByType text/html "access 1 month"
ExpiresByType image/gif "access 1 year"
ExpiresByType image/png "access 1 year"
ExpiresByType image/jpg "access 1 year"
ExpiresByType image/jpeg "access 1 year"
ExpiresByType image/svg "access 1 year"
ExpiresByType image/x-icon "access 1 year"
ExpiresByType application/pdf "access 1 month"
ExpiresByType application/xhtml-xml "access 1 month"
ExpiresByType application/javascript "access 1 month"
ExpiresByType text/x-javascript "access 1 month"
ExpiresByType application/x-shockwave-flash "access 1 month"
ExpiresDefault "access 1 month"
# TN - END EXPIRES CACHING #

# TN – ENABLE MOD PAGESPEED START
# COMBINE CSS, COMPRESS IMAGES, REMOVE HTML WHITE SPACE AND COMMENTS
<IfModule pagespeed_module>
ModPagespeed on
ModPagespeedEnableFilters rewrite_css,combine_css
ModPagespeedEnableFilters recompress_images
ModPagespeedEnableFilters convert_png_to_jpeg,convert_jpeg_to_webp
ModPagespeedEnableFilters collapse_whitespace,remove_comments
</IfModule>
# TN – ENABLE MOD PAGESPEED END

# TN - BEGIN Cache-Control Headers
<ifModule mod_headers.c>
<filesMatch "\.(ico|jpe?g|png|gif|swf)$">
Header set Cache-Control "public"
</filesMatch>
<filesMatch "\.(css)$">
Header set Cache-Control "public"
</filesMatch>
<filesMatch "\.(js)$">
Header set Cache-Control "private"
</filesMatch>
<filesMatch "\.(x?html?|php)$">
Header set Cache-Control "private, must-revalidate"
</filesMatch>
</ifModule>
# TN - END Cache-Control Headers

# TN - BEGIN Turn ETags Off
FileETag None
# TN - END Turn ETags Off

# TN – DISABLE IMAGE HOTLINKIING START
RewriteEngine on
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http(s)?://(www\.)?cornpone.net [NC]
RewriteCond %{HTTP_REFERER} !^http(s)?://(www\.)?google.com [NC]
RewriteRule \.(jpg|jpeg|png|gif)$ – [NC,F,L]
# TN – DISABLE IMAGE HOTLINKIING END

# DISABLE CACHING
<IfModule mod_headers.c>
Header set Cache-Control "no-cache, no-store, must-revalidate"
Header set Pragma "no-cache"
Header set Expires 0
</IfModule>
<IfModule mod_headers.c>
Header set X-Content-Type-Options nosniff
</IfModule>

# X-Frame-Options
<IfModule mod_headers.c>
Header always append X-Frame-Options SAMEORIGIN
</IfModule>

# X-XSS-Protection
<IfModule mod_headers.c>
Header set X-XSS-Protection "1; mode=block"
Header set X-XSS-Protection: 1;report=https://www.cornpone.net/xss
</IfModule>
Header set Strict-Transport-Security "max-age=31536000" env=HTTPS

# Use PHP71 as default
AddHandler application/x-httpd-php71 .php
<IfModule mod_suphp.c>
suPHP_ConfigPath /opt/php71/lib
</IfModule>

New Web.config
<add name="Cache-Control" value="no-cache, no-store, must-revalidate, pre-check=0, post-check=0, max-age=0, s-maxage=0" />

<add name="Pragma" value="no-cache" />

<add name="Expires" value="0" />

<add name="X-Frame-Options" value="SAMEORIGIN" />

<add name="Strict-Transport-Security" value="max-age=31536000; includeSubDomains"/>

<add name="X-XSS-Protection" value="1; mode=block" />

<add name="X-XSS-Protection: 1;report=https://www.cornpone.net/xss />

<add name="Content-Security-Policy" value="default-src 'self'; font-src *;img-src * data:; script-src *; style-src *;" />

<add name="X-Content-Type-Options" value="nosniff" />

<urlCompression doDynamicCompression="true" doStaticCompression="true" dynamicCompressionBeforeCache="true"/>

still cant get the XSS security shit to work...Fucking Hostgator
Da Gubamint Taketh
Da Gubamint Giveth Away
User avatar
United States of America Bubbathegimp
Site Admin
Site Admin
Reactions:
Posts: 1492
Joined: Sun Jan 12, 2014 10:18 pm
Location: Off Plumb
Contact:

Re: Da Board

#20

Post by Bubbathegimp »

All the Spam E-Mail from web developers wanting to "Design My logo" etc, seem to be slacking off since I started replying with those 2 little words
Spoiler
Fuck Off
Not sure how well that translates into Hindi though....
Da Gubamint Taketh
Da Gubamint Giveth Away
Post Reply Previous topicNext topic

Who is online

Users browsing this forum: No registered users and 0 guests