Flash BBCode Removed

  • Bigwebmaster
  • Site Admin
  • Site Admin
  • User avatar
  • Posts: 9088
  • Loc: Seattle, WA & Phoenix, AZ

Post 3+ Months Ago

Due to the security risks in allowing remote Flash files to load in the forum we have decided to remove the bbcode which allows you to post flash in posts and in footers. We are sorry for this inconvience, but the risks are too great as Flash can allow malicious users to read members cookies and store them remotely. By doing that they could gain access to any member's account, including moderators and do things that would jeapordize this board.

Thanks for your understanding.
  • Anonymous
  • Bot
  • No Avatar
  • Posts: ?
  • Loc: Ozzuland
  • Status: Online

Post 3+ Months Ago

  • BobdeBilder
  • Born
  • Born
  • BobdeBilder
  • Posts: 4

Post 3+ Months Ago

not sure if I can ask this question here

however, would this flash story apply to games in one's forum arcade too, please?

Thanks
  • ATNO/TW
  • Super Moderator
  • Super Moderator
  • User avatar
  • Posts: 23456
  • Loc: Woodbridge VA

Post 3+ Months Ago

If you are talking about your own forum and your own installed games, no. What Bigwebmaster is refering to is allowing people to post flash code in sigs and posts that we have no control over.
  • BobdeBilder
  • Born
  • Born
  • BobdeBilder
  • Posts: 4

Post 3+ Months Ago

thanks
  • Bigwebmaster
  • Site Admin
  • Site Admin
  • User avatar
  • Posts: 9088
  • Loc: Seattle, WA & Phoenix, AZ

Post 3+ Months Ago

Just letting you know I think we found a solution.

Quote:
Web pages that source Flash movies can pass a new parameter to the Macromedia Flash Player from the HTML code (PARAM tag for Internet Explorer, EMBED tag for Netscape Navigator).

This parameter is called "AllowScriptAccess". It can have two possible values: "always" and "never".

When AllowScriptAccess is "never", outbound scripting (ActionScript getURL() actions that specify a scripting statement) will always fail.
When AllowScriptAccess is "always", outbound scripting will always succeed.
If AllowScriptAccess is not specified by an HTML page, it defaults to "always".


You can read about the entire problem and solution here:

http://www.macromedia.com/devnet/securi ... 02-08.html

We may re-enable the flash bbcode after investigating further.
  • Funny_Fuzz
  • Mastermind
  • Mastermind
  • User avatar
  • Posts: 1517

Post 3+ Months Ago

Hmm... is there by any chance that you may re-enable it?
  • ATNO/TW
  • Super Moderator
  • Super Moderator
  • User avatar
  • Posts: 23456
  • Loc: Woodbridge VA

Post 3+ Months Ago

No. Too much security risk. Sorry.

Post Information

  • Total Posts in this topic: 7 posts
  • Users browsing this forum: No registered users and 1 guest
  • You cannot post new topics in this forum
  • You cannot reply to topics in this forum
  • You cannot edit your posts in this forum
  • You cannot delete your posts in this forum
  • You cannot post attachments in this forum
 
 

© 1998-2014. Ozzu® is a registered trademark of Unmelted, LLC.