Thomas Lynch
0176e4b339
Fix typo in text captcha, and force ints in randomrange
4 years ago
Thomas Lynch
1a6307482e
small refactor, put rng in separate file and not duplicated in captcha generators
4 years ago
Thomas Lynch
1ffe225fbb
small math error
4 years ago
Thomas Lynch
536aecffcc
Bug in RNG causing blocking, and make captcha show properly in modal for mobile
4 years ago
Thomas Lynch
dcc93f75fc
Bugfix impossible grid captcha references #209
4 years ago
Thomas Lynch
646cc551b7
More configuration and bit less ugly config layout for captcha
4 years ago
Thomas Lynch
0508df1cf7
Faq template change
4 years ago
Thomas Lynch
cb4c74b7cf
less dumb logic for the captcha loop and make it a bit stronger
4 years ago
Thomas Lynch
14dc090e08
Migration, and a change that will make it not get completely destroyed by ddos over TOR
4 years ago
Thomas Lynch
60d36bbb6a
Make a bit more maintainable, support different captcha types with some config options
4 years ago
Thomas Lynch
51084e1bc0
Test a different captcha
4 years ago
Thomas Lynch
28fdb8af81
small refactor, make captcha check separate. should be eaasier to add different captchas now
...
fix conditions for when to render bypass vs message page on failed captchas
use crypto timingsafeequal for comparing input to answer
4 years ago
Thomas Lynch
8e30513af1
remove some useless logic
4 years ago
Thomas Lynch
09e0bcb518
references #209 , add optional google recaptcha. implementation could use some polish, but it will work for now.
4 years ago
Thomas Lynch
b0797f0418
Beta testing .onion support
...
***DO NOT USE***
This still has some issues and needs testing.
- needs updated nginx configs added, expects "TOR" in the x-country-code header under a separate vhost
- need to make sure bans work properly still
- need to implement system to prevent captcha ddos, since i cant just to IP ratelimit now
- im 99% sure post history of tor users is broken if viewed by non-global staff
- manual input ban form will also be broken for non-global staff
- could still use some improvement on the middleware having a little more complicated flor for tor users
But for the most part it works. Basically it will use the bypass id of a tor user as their "ip".
4 years ago
some random guy
6527526c86
secure random captchas
...
Math.random is predictable:
https://blog.securityevaluators.com/hacking-the-javascript-lottery-80cc437e3b7f
4 years ago
fatchan
ce1fb88863
blockbypass captcha auto load and add word answer to incorrect messages
4 years ago
fatchan
d2a76353e7
delete temp files in captaverify
4 years ago
fatchan
56a3f73184
improve flow of blockbypass
4 years ago
fatchan
8a520f44fe
improve flow of blockbypass
4 years ago
fatchan
aeec30fa95
option for defining fonts for captchas
5 years ago
fatchan
73203db312
start option for unhashed ips
5 years ago
fatchan
3b452604e2
dont do 2 captchas, give bypass if already solved board captcha
5 years ago
fatchan
6837120a51
add some captcha options
5 years ago
fatchan
709e695ae7
captchas a bit wider and clean the generating a bit
5 years ago
fatchan
2c81037cb3
various minor changes and improve forms script for future use
5 years ago
fatchan
ddedc78542
post from catalog, and small changes to gulpfile and captcha
5 years ago
fatchan
5dd1c9e7af
captcha fixes and serve jsons with nodejs in dev mode
5 years ago
fatchan
4482889bca
separate ratelimit for different things, and make changing theme do some rebuilds (with ratelimit)
5 years ago
fatchan
045716de78
add deleteold as a separate tool to delete files in dir older than a tiemstamp, and then prune older than 30 days logfiles with generating the modlog list
5 years ago
fatchan
485dc802aa
improve how errors shown when making a post, use modals and fix ban seen marking
5 years ago
fatchan
eb8f87978e
move some schedule files
5 years ago
fatchan
f7d1ba9470
webring support, optional. currently adds webringed boards to homepage list. in future will move to board list page
5 years ago
fatchan
5d683590b3
dont load captcha until clicked on box with js, refresh with double click, and keep iframe in noscript tag for noscript compatibility
5 years ago
fatchan
3b59af8987
theme change
5 years ago
fatchan
8484d12e38
refactor captcha to separate template include, change to match theme
5 years ago
fatchan
5ce2b42a0e
dont build homepage immediately on schedule start, and move delete captchas to separate file
5 years ago
Tom
f0ca405236
Add modlogs ( #48 )
...
* public mod logs, per day and list of log days
* action handler variable names and logic changes, also dont duplicate modloglist code
5 years ago
fatchan
848cc07d9f
separate ratelimits from captchas
5 years ago
fatchan
5a6e7cbf94
improved captcha trigger behaviour and optional modes
5 years ago
fatchan
5595dd7024
make sticky, sage, lock, cyclic a toggle so they can be reversed or toggled independently in batches
5 years ago
fatchan
0f3dbfa931
post layout, postform and ban page improvements
5 years ago
fatchan
88e86c5349
automatic captcha enabled at configurable PPH
5 years ago
fatchan
3abbe9b2c7
add distortion to captcha instead of wave using imagemagick and update dependency for gm fork
5 years ago
fatchan
7c57fca366
organise the helpers some
5 years ago