Spank that ..SSL!

You can find important news and current events here.
Post Reply
seraph0x
Administrator
Administrator
Posts: 2654
Joined: Sun Jul 23, 2006 8:58 am

Spank that ..SSL!

Post by seraph0x »

We just finishing switching Milovana over to using HTTPS/SSL/TLS/letter-soup. For the uninitiated, this means the NSA can no longer peek at the contents of your private forum and chat messages.

Ok, the NSA probably still can, but lesser intelligence services can't. Progress! :clap2:

There is some work remaining. Chrome users for example may notice the green padlock turning yellow on certain pages - this is due to images being loaded externally without HTTPS. Unfortunately, some of our partners are fully on HTTPS yet, so I'm not sure when we'll be able to fix that. On the bright side, this problem does not compromise the security of private messages in any way.

If you are having any problems since the switch, please make sure you report them here. That's all I have for now! Thanks!
User avatar
Azureballs
Explorer At Heart
Explorer At Heart
Posts: 115
Joined: Sat Oct 28, 2006 5:30 pm
Gender: Transsexual/Transgender
Sexual Orientation: Open to new ideas!
I am a: Submissive
Location: USA

Re: Spank that ..SSL!

Post by Azureballs »

Wooo! Thank you seraph!
Mat
Explorer At Heart
Explorer At Heart
Posts: 429
Joined: Sun Feb 26, 2012 8:34 pm
Gender: Male
Sexual Orientation: Straight
Location: UK

Re: Spank that ..SSL!

Post by Mat »

Thank You!! :-D

I've been wanting SSL for a while, especially for the login page :-)
Mat
Explorer At Heart
Explorer At Heart
Posts: 429
Joined: Sun Feb 26, 2012 8:34 pm
Gender: Male
Sexual Orientation: Straight
Location: UK

Re: Spank that ..SSL!

Post by Mat »

Hopefully a quick question..

How come the login password has a maximum length of 30 characters?
If they are hashed using SHA1 then it shouldn't matter, unless the passwords are stored in plain text or use an older algorithm..
User avatar
green
Explorer At Heart
Explorer At Heart
Posts: 789
Joined: Thu Jul 24, 2008 11:43 pm
Gender: Male
Sexual Orientation: Open to new ideas!
I am a: Switch
Location: Germany

Re: Spank that ..SSL!

Post by green »

Woohow :D Seraph0x back in Business :-D

Now. Any chance that the next tease editor will be launched during this decade ? :smile:

green
You can own the earth and still - All you'll own is earth until
You can paint with all the colors of the wind
User avatar
SexualChoc
Chat Moderator
Posts: 3144
Joined: Mon Aug 10, 2009 1:22 pm
Gender: Male
Sexual Orientation: Straight
I am a: Switch
Location: Missouri, Usa
Contact:

Re: Spank that ..SSL!

Post by SexualChoc »

:thankyou:
:bounce: :mbounce: :band:

Wow..
all2true
is my other profile. see my chastity belt link :
http://www.milovana.com/forum/viewtopic ... 16#p139016
badjano
Explorer
Explorer
Posts: 32
Joined: Sun Feb 05, 2012 8:56 pm
Dom/me(s): ankh

Re: Spank that ..SSL!

Post by badjano »

Thank you!
User avatar
freakygeak
Explorer At Heart
Explorer At Heart
Posts: 235
Joined: Fri Sep 12, 2008 8:57 am
Gender: Male
Sexual Orientation: Straight
I am a: Switch
Dom/me(s): Don't have a Domme nor am I looking for one. However, should one be interested I may be persuaded into a short term arrangement.
Sub/Slave(s): Don't have a sub/slave nor am I looking for one. However, should one be interested I may be persuaded into a short term arrangement.
Location: Indiana
Contact:

Re: Spank that ..SSL!

Post by freakygeak »

Mat wrote:Hopefully a quick question..

How come the login password has a maximum length of 30 characters?
If they are hashed using SHA1 then it shouldn't matter, unless the passwords are stored in plain text or use an older algorithm..
Before you read my answer, you should know that I don't work here..

My guess is it probably has something to do with the integration between the forum and whatever the xmpp server is (guessing Openfire, Ejabberd or Prosody).. I use Ejabberd for my private project, and it requires plain text for password storage. I have no idea about Openfire or Prosody.

On the other hand, I could be way off. I've never seen the milovana server configuration/s and I doubt seraph0x is likely to let me have a peek anytime soon, lol.
Elsewhere I am known as Moros1138.
I do web design and video editing for webcam models.
Check out my new site http://www.moros1138.com to see examples of my work.
User avatar
freakygeak
Explorer At Heart
Explorer At Heart
Posts: 235
Joined: Fri Sep 12, 2008 8:57 am
Gender: Male
Sexual Orientation: Straight
I am a: Switch
Dom/me(s): Don't have a Domme nor am I looking for one. However, should one be interested I may be persuaded into a short term arrangement.
Sub/Slave(s): Don't have a sub/slave nor am I looking for one. However, should one be interested I may be persuaded into a short term arrangement.
Location: Indiana
Contact:

Re: Spank that ..SSL!

Post by freakygeak »

About the SSL.. All I can say is... WOOT!!
Elsewhere I am known as Moros1138.
I do web design and video editing for webcam models.
Check out my new site http://www.moros1138.com to see examples of my work.
woot9000
Curious Newbie
Curious Newbie
Posts: 2
Joined: Tue Mar 04, 2014 1:07 am

Re: Spank that ..SSL!

Post by woot9000 »

freakygeak wrote:
Mat wrote:Hopefully a quick question..

How come the login password has a maximum length of 30 characters?
If they are hashed using SHA1 then it shouldn't matter, unless the passwords are stored in plain text or use an older algorithm..
Before you read my answer, you should know that I don't work here..

My guess is it probably has something to do with the integration between the forum and whatever the xmpp server is (guessing Openfire, Ejabberd or Prosody).. I use Ejabberd for my private project, and it requires plain text for password storage. I have no idea about Openfire or Prosody.

On the other hand, I could be way off. I've never seen the milovana server configuration/s and I doubt seraph0x is likely to let me have a peek anytime soon, lol.
(just saying at first I don't work at Milovana either)
The systems you described which seem to be messaging systems that use XMPP, those are for instant messaging and preserving messages when the receiver is not online. This has rather little to do with this website.
Milovana is a fork of phpBB (bulletin board software) and instead of having to send messages between servers, it has to store things like users and their usernames and passwords and teases with their text and pictures, for this a database is used. phpBB has support for multiple database systems, MySQL being globally the most used one, but in this case this doesn't exactly matter because all of the database systems allow you to choose what data to store and in what structure and therefor there's nothing restricting the hashing of passwords. (and phpBB always does hash passwords)

And because the passwords are hashed there's absolutely no reason to limit password length, there's only reason >not< to limit it.
Currently phpBB still limits password length, but now with a max of 100. I believe Milovana should update phpBB if possible or manually increase max password length or even remove the restriction completely.
freakygeak wrote:About the SSL.. All I can say is... WOOT!!
yup
User avatar
alchemi183
Explorer At Heart
Explorer At Heart
Posts: 548
Joined: Mon Jan 25, 2010 10:15 am
Gender: Male
Sexual Orientation: Straight
Location: Rocky Mountains

Re: Spank that ..SSL!

Post by alchemi183 »

I'm a little late reading about this, but thank you very much! SSL is a very welcome feature and I'm glad you've made it happen. :wave:

Hey, I just noticed this is my 420th post!!! :lol: :pimp: :cigar:
Post Reply

Who is online

Users browsing this forum: No registered users and 20 guests