Graalians

Graalians (https://www.graalians.com/forums/index.php)
-   Site Information (https://www.graalians.com/forums/forumdisplay.php?f=4)
-   -   IMG Tag Whitelist (https://www.graalians.com/forums/showthread.php?t=39684)

fp4 09-10-2017 05:05 PM

IMG Tag Whitelist
 
We have made some modifications to the vBulletin IMG tags to only support a specific list of hosts.

That list is currently:
  • cdn.discordapp.com
  • i.gyazo.com
  • i.reddit.com
  • imgur.com
  • www.imgur.com
  • i.imgur.com
  • puu.sh
  • pbs.twimg.com
  • i.pinimg.com
  • i0.kym-cdn.com
  • i.ytimg.com
  • *.tumblr.com
  • *.giphy.com
If there are any other major hosts we may have missed please suggest them. They must also support HTTPS as well.

IMG tags that do not link to one of the above sources will be displayed as links instead.

Eugeen 09-10-2017 05:23 PM

Could "Giphy" (https://giphy.com/) get support?
Direct image links use: https://media3.giphy.com/

fp4 09-10-2017 05:27 PM

Quote:

Posted by Eugeen (Post 795933)
Could "Giphy" (https://giphy.com/) get support?
Direct image links use: https://media3.giphy.com/

Added.

Sun* 09-10-2017 06:05 PM

So those are the host that the server images can support but is there a specific way to use the links? What I mean I said that my graphics thread only has images from imgur but the server doesn't show them anymore

(Graphic thread : https://www.graalians.com/forums/sho...348#post789348)

Eugeen 09-10-2017 06:54 PM

Quote:

Posted by Sun* (Post 795941)
So those are the host that the server images can support but is there a specific way to use the links? What I mean I said that my graphics thread only has images from imgur but the server doesn't show them anymore

(Graphic thread : https://www.graalians.com/forums/sho...348#post789348)

https://i.imgur.com/Bw0qlDp.png

Right+click -> Copy Image Address
That's how you get the direct URL, it works the same way for every other image hosting website listed here.

fp4 09-10-2017 08:34 PM

Quote:

Posted by Sun* (Post 795941)
So those are the host that the server images can support but is there a specific way to use the links? What I mean I said that my graphics thread only has images from imgur but the server doesn't show them anymore

(Graphic thread : https://www.graalians.com/forums/sho...348#post789348)

This is fixed now.

The Doctor 09-10-2017 09:21 PM

Is there a reason why there is a whitelist of specific hosts? I'm pretty sure there is a way to allow all https image hosts, if that was the goal you were going for.

fp4 09-11-2017 02:47 AM

Quote:

Posted by The Doctor (Post 795968)
Is there a reason why there is a whitelist of specific hosts? I'm pretty sure there is a way to allow all https image hosts, if that was the goal you were going for.

This was significantly easier than implementing a reverse image proxy which can have security and resource (hard drive space, bandwidth, CPU time) issues.

I've wanted to white-list image hosts for a while but just got around to doing it, being able to force HTTPS was also a nice perk to go with it.

The Doctor 09-11-2017 05:32 AM

Quote:

Posted by fp4 (Post 796003)
This was significantly easier than implementing a reverse image proxy which can have security and resource (hard drive space, bandwidth, CPU time) issues.

I've wanted to white-list image hosts for a while but just got around to doing it, being able to force HTTPS was also a nice perk to go with it.

I'm glad y'all ended up doing this. Thanks for putting in the time!

RyanB 09-11-2017 10:57 PM

@Fp4 can we get the iClassic NGS instead

Ethacon 09-11-2017 11:24 PM

Quote:

Posted by RyanB (Post 796091)
@Fp4 can we get the iClassic NGS instead

lol.

Adrian 09-12-2017 03:24 AM

Quote:

Posted by RyanB (Post 796091)
@Fp4 can we get the iClassic NGS instead

No.

Thallen 09-15-2017 10:42 PM

Quote:

Posted by The Doctor (Post 795968)
Is there a reason why there is a whitelist of specific hosts? I'm pretty sure there is a way to allow all https image hosts, if that was the goal you were going for.

Can also do weird stuff like cookie stuffing (probably not useful here) and pulling IPs through IMG. Caught at least one person here trying to send me a PM with a .php file in an [IMG] tag.

Crono 09-16-2017 08:14 AM

Quote:

Posted by Thallen (Post 796393)
Can also do weird stuff like cookie stuffing (probably not useful here) and pulling IPs through IMG. Caught at least one person here trying to send me a PM with a .php file in an [IMG] tag.

hay thalen i sent u my new head called notavirus.exe, jus put it anywhere but ur graal folder and run it ok?

Ash Ketchum 09-21-2017 06:17 AM

Quote:

Posted by Thallen (Post 796393)
Can also do weird stuff like cookie stuffing (probably not useful here) and pulling IPs through IMG. Caught at least one person here trying to send me a PM with a .php file in an [IMG] tag.

Screenshot us the message for research


All times are GMT. The time now is 09:49 AM.

Powered by vBulletin/Copyright ©2000 - 2024, vBulletin Solutions Inc.