MyBB Community Forums

MyBB Community Forums > 1.8 Support > General Support > enabled
Full Version: enabled
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

HighRank2267

2020-08-06, 04:50 PM
https://community.mybb.com/mods.php?action=view&pid=450


[*]MyCode images (on/off)
Prevents displaying non-HTTPS MyCode images by replacing them with links.

[*]Avatars (on/off)
Requires remote avatars to be linked to over HTTPS.



My questions is Does Use that plugins are more Secured by Allowed To Use Remote Avatar or Is Allow Bad user to Put A url virus or other to Hack the Board even with that plugins ?


my another question is Using mycode Image With that plugins are more secure to use bbcode Like normal settings on board and probably allow user to use bbcode Without https ?


if  Decided to Allow bbcode and url on board what you recommend to me ? About security

User 129272

2020-08-07, 02:31 AM
Hey,
HTTPS generally doesn't mean virus free. Viruses can be transported over both HTTP and HTTPS, but it's hardly possible to include them in image type files at all- and it's generally not a risk for your server, at most for your users, but any builtin antivirus will probably catch those.
So to answer your first question- no, HTTPS won't make it virus free. It sort of already was in the first place.
As for MyCode images, the answer is about the same.

But is it a good idea to go HTTPS only, even for images? For 99% of use cases- yes. So I'd recommend using it regardless.

HighRank2267

2020-08-07, 02:37 AM
(2020-08-07, 02:31 AM)mTurtle_ Wrote: [ -> ]Hey,
HTTPS generally doesn't mean virus free. Viruses can be transported over both HTTP and HTTPS, but it's hardly possible to include them in image type files at all- and it's generally not a risk for your server, at most for your users, but any builtin antivirus will probably catch those.
So to answer your first question- no, HTTPS won't make it virus free. It sort of already was in the first place.
As for MyCode images, the answer is about the same.

But is it a good idea to go HTTPS only, even for images? For 99% of use cases- yes. So I'd recommend using it regardless.

thank you If i understand an user Can share a link in board and http or https if the link or clikable and not in Text only They can put a virus and probably infect Easly the board ?

Does exist a way to Made it secure and allow url Parsing (url clickable) ?
MyBB Community Forums > 1.8 Support > General Support > enabled