[ an / aw / cr / fi ] [ ra ] [ he / ta / vi ]

/aw/ - AwsumChan Meta

Discussion of AwsumChan itself.
Name
Email
Subject
Comment
Verification
File
Password (For file deletion.)

NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS NEW BOARDS /he/ /ta/ /vi/

File: 1552404569734.gif (180.35 KB, 340x192, 1552158984797.gif)

 No.78

So I keep thinking about tinyib. It is only 1.5 mb of files, and it can do anything other imageboards can do. It can even deploy in flatfile mode, which makes it so anyone can set up an instant site on just about any php server.
Instead of trying to modify 50mb or so of thousands of files of code, why not just build on tinyib? Tinyib proves that one does not need thousands of files to run an imageboard. So wtf do ppl have thousands of files in like vichan for? Every single file is another potential way to do an sql injection or xss injection. For example, people in the know can run one of the files, for example just point the browser to mychan.org/inc/data/hidden.php AND put the proper syntax afrer the hidden.php, like mychan.org/inc/data/hidden.php?3w the ?3w can do anything, reveal ip's manipulate the db, anything. It seems that chan boards don't give a rats ass about security, and they all just say oah gee let us know if there are any bugs.

 No.79

Question part 2-

….. SO, it seems that any chan out there is attempting to include as many files as possible. For what? To set up future bot nets? To gather all kinds of data and spy on anons? I am not a criminal, but I can assure you that the gov has an interesting in identifying all "anonymous" type ppl and a good easy as fuck way to do that is make a honeypot chan site that opens up users to major security flaws.
So tiny ib, in 1.5 mb of files, can do what vichan can. So why the fuck do we bother with vichan? How about if good coders looked at tiny ib, and kept it very small in files yet but just made sure it is fast and can run well on php7.3.3 (which it does, by the way, it is the only chan that did not need to be modified in order to run on php 7.3.3)
SO—- my idea would be to make a fork of tinyib- to make sure it takes full advantage of the speed and security of the latest php versions. Maybe get rid of the .htaccess files in it. The idea would be to keep it small as fuck, to keep bloat out, and to absolutely NOT make it rely on any dependencies.

Another idea to keep it super simple is to make it even SMALLER!!!! That's right. Get rid of the db options, make it run in flatfile by default. A flatfile chan that can deploy on any php host, with NO crazy dependencies. Basically, it IS that already! BUT, make it flatfile only, there will be NO MORE SQL INJECTION concerns without having it rely on MySQL. Fuck that. MAYBE– just maybe, keeping it in flatfile would make it the ONLY secure chan. Less ways to do attacks in flatfile mode. Also, note that flatfile has gotten fast as hell with php 7.3.3, cdn's like cloudflare, and the proven method of using apache in the background, and having a reverse proxy nginx server serve the static files.

 No.80

Question part 3

The fucking thing is already made. All one would have to do is take out all the MySQL code and make it flatfile only. THEN, make sure the php code takes advantage of php 7.3.3 and then slightly change the css to be more modern and look better. The end result? A chan board capable of running on any php server, a chan that has very few files, a chan that does not rely on database so no more sql injection concerns. Instead of fucking around with something like vichan that has thousands of files, the new chan would be about 1mb of a few files.
What do you think? It could be a revolutionary new imageboard that proves how stupidly not secure the rest of them are. It would be more reliable than any of the others.
I was thinking of offering someone 1K to code it and maintain it for a while. Can you pls tell me what you think of the whole idea?

 No.81

>>78
There's really no concern for SQL injections in Tinyboard, as long as you use prepared statements.
As for backdoors, there hasn't been any in Tinyboard since savetheinternet removed an update checking feature that was incredibly insecure - I never plan to add something like that again.

>>79
TinyIB has it's own merits but it requires you to set up an instance for each board. Flatfile database is nice for very small imageboards but really slow down when you start getting steady content flow, which is why virtually every imageboard supports a RDBMS of some sort.

Tinyboard has a relatively small codebase if you don't count third-party dependencies such as Twig. The reason why we use these is unlike TinyIB, Tinyboard uses a templating engine to render the HTML files that you see. The code for these templates appears far cleaner than using PHP itself and is easier to work with.

As for appearance and styling, it's definitely something I want to improve over time. I'll be looking into making the appearance friendlier to mobile devices.

As for slimming down, that's something I'm still working on.

 No.82

>>81
Check out 2 examples of my tinyib mods. https://4usa.org/1 and https://4usa.org/2

flatfile mode examples, a 10 mb animated gif renders instantly. It would be even faster in db mode.

both take gif, jpg, png - if one wanted animated thumbs just install imagemagick. both can do youtube embedding. it can even do webm which I didn't set up yet.

its like 1.5m each instance. easily modifiable. works on php 7.3.3 ( current example is running that)


I know that tinyboard forks look a million times better- but im conflicted in if I should just start a bunch of chans with the tinyib mod.

php7.3.3 , its behind a reverse proxy that serves the static files and apache runs in the background (the fastest way to run php) and its behind cloudflare cdn. I can upload a 10m aninimated gif to it in the blink of an eye.


I just keep wondering if that's all one needs for an imageboard. I guess you really don't think its a good idea to fork tinyib?

 No.83

>>82
The big reason TinyIB is so small is because it lacks third-party PHP libraries and features like themes, advanced moderation with multiple staff.

What you need in an imageboard is all dependent on what you feel are the needs of your site and its demands.

4chan (formally?) runs a heavily modified version of futaba.php that had a completely garbage looking codebase, but it worked well for the traffic it carried. Forking TinyIB isn't a bad idea if you want to go that route, but I personally have no intentions to do that.

Also, I prefer using NGINX instead of Apache - it's faster when using it with PHP-FPM. Using APC caching and a few other features really helps with performance.

 No.84

>>83
Yeah, I see your points. I've always been fascinated by tinyib and in the back of my mind always wanted to try to make the css look better and actually run a board with it. Even using it as a textboard is awesome, one can have just the comments section and a send button. That makes for a flatfile textboard, instant deployment to any site. Maybe I will just keep it for a flatfile text board and include it in chans in the textboard pages. I want to start some chans, but can not figure out if to use vichan, openib, lynx, npf, tinyboard, or meguca. Check this shit out…they were working on it yesterday!! https://github.com/bakape/meguca there is something wrong tho, they tried to update the code and every pic is not showing now at https://meguca.org/

 No.85

Mainstream vichan is about done, obviously- thank god for forks tho.
march 30, lynx is coming out with 2.2 beta. If you read the full page and every thread of the npf link I sent, npf dev seems very serious. meguca.org is serious in dev too.
Its cool that you seem to like getting rid of the nonsense and bloat. Just as an idea for you, to clearly state that awsumchan will never do shit like try to mine bitcoin, awsumchan will keep the bloat out, focus on security, and have a good community of people who will help people with questions, then you can still stand out.

Looking at other ppl's patreon, ppl do all sorts of things on there. It is a blank slate where you have the potential to create anything. Maybe start by an article on there asking others if they have questions?

You want to build a community that goes to ur patreon acct. For your regular sites, mostly kinda just say that if ppl have questions then they should go to your patreon acct and ask. `

And the fucked up truth is that you should also either get into node.js or golang In all honesty just php is not enough nowadays.

 No.88

>>83

Apache is faster when it comes to cpu intensive ops tho. Nginx can serve static files faster, but apache and modern php can actually be faster at cpu intensive operations, and there are benchmarks posted on the internet to prove that. The best way that people know of so far is to use both. Use nginx as a reverse proxy to handle the static files and non-blocking io of visitors, and then use apache for the cpu intensive ops in the background.

 No.89

>>85
Actually I have a lot of work done in Node, Python, Ruby, and Go as well. I've been working on a different style of imageboard in Python for a while now that uses tags instead of boards. If you've ever used a booru, it works similar. Originally I tried to do it in Go but the abilities of templating engines in Go were very limited. I don't consider the use of languages other than PHP to be a bad thing.

>>88
I'm not sure I get what you mean by "intensive operations" on the webserver, unless you're talking about regular expression rewrites or the like. I personally don't see a point in trying to do anything particularly intensive on the webserver either.

As for the comment on meguca, lynxchan, and other imageboard engines - I'm not aiming to compete with them. I don't feel that imageboards are necessarily a competitive field of software.

 No.90

>>89
That's cool that you do node.js and all that too!


By cpu intensive they say like video processing, rendering images and so forth. Most reputable articles on nginx vs apache say that nginx is the king of static files but slower when the site needs to do dynamic stuff like process images online and so forth, like idk maybe a meme maker where it has to generate pics after someone creates a meme? So the articles all claim that the best known method is to have nginx as a reverse proxy and apache do the dynamic, or more cpu intensive stuff in the background.

However, nginx IS cool lol. So would you say ppl should dump apache entirely and only run awsumchan on nginx?

 No.92

>>90
I think you mean Tinyboard here. (AwsumChan is my website, not a software). As for apache, I'm not dissing it, I'm just stating it's not really something I'd call performance focused for running Tinyboard.

 No.93

Also please stop making a new thread for every comment man, it's becoming borderline spam on here and I'm very tempted to purge some of it. We have an IRC if you want chat on there.

 No.94

>>93
Oah, sry I thought one should make one topic per thread. Purge all of it if ya want, no prob at all. Ive just been thinking a lot about making some chan sites so I had a zillion questions lol. Brainstorming out loud. Some sites like lots of activity, I kinda forgot that smaller sites can find that annoying.

 No.96

>>92
ahh.. I thought awsumchan was the name of the tinyboard fork.

 No.97

>>96
No. It is still known as Tinyboard. I developed some of the parts of Tinyboard that are still used today, particularly some of the stylesheets and porting the templates to Twig.

I will never assign the AwsumChan name to anything but this website.

 No.98

>>97
Oops, I thought this was the main dev board lol. Pls feel free to purge everything if ya want. Interesting case study tho, like if there was a board that only had 1 page and 10 or so threads, all the old shit would be purged automatically. It actually gave me an idea to include a board like that on my future chan sites.



[Return][Go to top] [Catalog] [Post a Reply]
Delete Post [ ]
[ an / aw / cr / fi ] [ ra ] [ he / ta / vi ]