vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   Community Lounge (https://vborg.vbsupport.ru/forumdisplay.php?f=13)
-   -   Explaining flash... (https://vborg.vbsupport.ru/showthread.php?t=118149)

Bubble #5 06-09-2006 06:13 PM
Explaining flash...
 
We've read all around the forums how allowing people to post flash on your forums 'could' be a security risk.

However, is there the same risk if you just (as an admin only) add a small bit of flash to one of your templates (say for example; forumhome)?

We couldn't find any detail on this. Could someone please explain? :bunny:

ericgtr 06-09-2006 06:43 PM
Well, the risk is letting other users post it as it can contain embedded, malicious content. If you are the one calling it up in a template and know it not to be malicious then there is no problem with that.

Bubble #5 06-09-2006 06:48 PM
Ahhh... this is GREAT news! Thank you very much for explaining that ericgtr :bunny:

Marco van Herwaarden 06-10-2006 12:18 PM
Quote:
Originally Posted by ericgtr
Well, the risk is letting other users post it as it can contain embedded, malicious content. If you are the one calling it up in a template and know it not to be malicious then there is no problem with that.
It is easy if you have written that flash script yourself. But if it is provided by someone else, you would still not know for sure.

Bubble #5 06-10-2006 05:14 PM
So this is more an issue if trust than anything? What if you wanted to share something made of flash, is there no way to prove that it's clean and won't hurt the forum?

Marco van Herwaarden 06-10-2006 05:57 PM
If you would allow members to use flash, then it would really be a security issue. If you as admin are the only one, then it depends mostly on the admins common sense.

Bubble #5 06-10-2006 06:54 PM
Yes we understand that part :) But what if you (as an admin) has a clean Flash file that you wish to share with another admin? Is there no way for the second admin to check the file to see if it's OK? :confused:

Eriond 06-10-2006 07:06 PM
if the flash file is published and protected no, if you have the original .fla file you can send them that so they can verify it is clean and then they would publish the .fla themselves, this is assuming both parties know flash and have Macromedia Flash


All times are GMT. The time now is 01:22 PM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01080 seconds
  • Memory Usage 1,720KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (8)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete