• Changing RCF's index page, please click on "Forums" to access the forums.

vBookie

Do Not Sell My Personal Information
Pyro

Pyro

Go Cleveland!
Joined
Sep 26, 2010
Messages
23,591
Reaction score
7,517
Points
113
I think it's high time to add the betting system vBookie, to the fabulous RCF.

http://www.vbulletin.org/forum/showthread.php?t=233473

Basically, you have mods (or whoever) set up bets (on whatever, games, award shows, etc) and then people of course bet on them with vCash, and... yeah. Quite fun.
 
Too server intense, leaves a security hole, not worth it IMO
 
Name them. NAME THEM.
 
I'm not naming anything, I own those sites, there's a reason I'm posting here.

Either way, please dude, I already gave you valid reasoning why they shouldn't install this plugin, you just said you know more than me, I'm telling you why because of problems I've ran into. I'm strongly against installing most of plugins available on vb.org anyway, I do this damn near professionally so I know what I'm talking about because I've seen it.
 
So... you have no sites to begin with? That's what I thought.

I've actually been behind the wheel of many message board Admin CPs.
 
What the hell, I just said I own sites.

And great, you been admin on a lot, doesn't mean you know what kind of impact these plugins have on a server when the site is of a decent size. I had plenty of losses happen when a wrong plugin was installed, particularly by an idiot admin who just wants to see flashy shit but doesn't know what's going on behind the scenes on the server level.

If you say don't talk shit, then don't talk shit, running forums is part of my business I do this for real, more so than anybody on this site including admins or the owner, but hey I'm just giving you this information, take it or leave it.
 
Well I'm telling you that you are wrong, and clearly biased towards positive and forward change.
 
Well fuck you, you're telling me that I'm wrong based on absolutely zero reasoning.
 
trapalizer said:
Too server intense, leaves a security hole, not worth it IMO
Click to expand...

Can you elaborate on this vulnerability? What have you seen happen from your standpoint as an admin? Is this plug-in not secure due to poor coding practices or is it due to poor administration and vulnerable default settings?


FYI, I'm curious because pen-testing is a part of my job, it's always interesting to learn new attack vectors and how best to defend against potential exploits.
 
gourimoko said:
Can you elaborate on this vulnerability? What have you seen happen from your standpoint as an admin? Is this plug-in not secure due to poor coding practices or is it due to poor administration and vulnerable default settings?


FYI, I'm curious because pen-testing is a part of my job, it's always interesting to learn new attack vectors and how best to defend against potential exploits.
Click to expand...

The thing about plugins on vb.org is a lot of them are done by poor programmers, from my standpoint as an admin I seen my boards being compromised due to even excellent plugins such as vbSEO. The lesser plugins I have decided not to run due to tip from my programmers early on, for example a certain kind of hide hack was bringing the whole forum down because of extra/unnecessary sql queries it was creating, switching to a different kind (and later having a custom one done) fixed this problem completely. Security holes on vb plugins are mostly XSS injections and these are sometimes a bitch to detect cause all it would be is a cloaked advertiser code. While that isn't as big of a deal for a medium sized forum as this one is, vbulletin and major plugins do release patches quickly (definitely sucks to be the first one to get hit), these lesser plugins take a while to do updates and fix these issues, even if they do seem very active.

This is all due to poor programming and due to poor support of these plugins, as they're mostly done by a single person who's not doing this full time and is mostly a hobby or a project for them.

If it's just due to default settings I can't blame that on the plugin itself, I'm strict about admin permissions with my admins and keep any power from those who I know that like to experiment.
 
You must log in or register to reply here.

Rubber Rim Job Podcast Video

Episode 3-14: "Time for Playoff Vengeance on Mickey"

Rubber Rim Job Podcast Spotify

Episode 3:14: " Time for Playoff Vengeance on Mickey."
Top