Hi

I remember you back when your UN was zachedy, havent talked to you in years years YEARS!!! just remembered you existed so yeah lol i hope you e been going good

> [805]
omg !

yoinky sploinky

hoohooheee

Hey buddy o pal! Great cartoons friend! Oh man I watched your stuff like NINE times over man! Nah seriously tho, how did you get so good at making awesome stuff. Greatness... Up ahead.

your site is so freaking COOL WHAT!!!!!!! AUGH!!!!!!!!!

> [796]
Thank you, Barack Obama.

so let me be clear i like your art and if you'd let me be clear i think its cool. so if i'm being clear right now , i think this website is pretty awesome sauce, and to be completely clear , thats my thoughts. let let me me be be clear clear , i am typing double now! haha! let me be clear , that was kind of funny... (clearly )

Es dia de inocentos! Hablo Espanol, no en Ingles !!

hey girl we use to chill out as friends my name was funnies animations and my discord user is abandonedpool hope to hear from u again

I hope this doesn't come off as a random post, but I've been wanting to chat more ig, if somehow that's not possible i get it.

We've just used to chat here and there and I thought you seemed quite chill so hey, whatever works ig.

But yeah how ya doin otherwise?

> [789]
Didn’t get past the meteor scene in Earthbound

random but what are ye thoughts on the earthbound/mother series?

> [786]
You’re welcome!

> What prompted you to come up with that idea? Have you dealt with a previous spam attack
Unfortunately yes, lulz. I’ve had spam bots come in my message board spamming porn links seemingly every other day. Take a wild guess on what country they came from.

The issue was wanting to make this message board as anonymous as possible but still prevent spam. CAPTCHA’s weren’t going to cut it, it sucks to have to force people to verify they’re human because some nosey bots ruined it for people. I looked around online and that was what I came up from my research. Not 100% effective, but the best one I found for my needs.

Feel free to use it yourself!

> My site isn't up yet, but it's nearing completion (well, hopefully... last 10% of a project ends up taking 90% of the time lol)
Feel that way too hard...

> [785]
It all makes perfect sense! Thanks for explaining. I've learned a ton over the past few months about backend setup.

As far as htmlspecialchars, I've not heard about it but I'll definitely look into it. Like I said, my site doesn't have any injection vulnerabilities (from my limited testing, at least) but it couldn't hurt to have another safeguard on top of it.

That hidden form idea is honestly genius. I might have to steal that... lol. From my SQL injection tests, the bot did in fact fill out every form. What prompted you to come up with that idea? Have you dealt with a previous spam attack on this (or another) site of yours?

My site isn't up yet, but it's nearing completion (well, hopefully... last 10% of a project ends up taking 90% of the time lol)

I'll be sure to share it once I get to a good point.

> [784]
I prevent SQL Injections and spam in two respective ways. The host doesn't prevent spam, it's all backend.

> SQL Injection
First and for most, use the htmlspecialchars global function, you can use the function on your name/message variables, but I prefer to use it on the forms action attribute. It converts special characters into HTML entities. It also helps prevent any SQL Injections or any malicious HTML or Javascript code from being executed. Super handy!

> Spam prevention
To prevent spam from bots is a combination of the above and a hidden verification system. It's assumed that bots will fill out the entire form to prevent any errors (say, if not putting a name in returns an error.) So what I did was make a hidden verification system inside the form. If someone (in this case, a bot) fills out that system, it will quietly not send. You can actually see the verify input in the source code.

I hope this made sense? Please share your website. I'd love to check it out and comment on it!

> [738]
Howdy gangsters,
Being in college has really slowed down my progress on my blogfolio but I've gotten quite far. I'm kind of modeling it after this site, with an m-board and all. The messageboard has taken up the majority of my focus and is by far the most fleshed out part of the site. However there are some security concerns that I'd like to ask you about.

I've tested SQL injection possibilities and, while there's no such vulnerabilities, every time i've done it i'm left with like hundreds of messages on the messageboard all containing fragmented SQL garble.

How do you prevent such spam attacks? Or does your host automatically prevent any access to the site that's not from a legitimate browser?

Once again it's always refreshing to peep the whole scene (site) here.

Have a good frickin day.

> [782]
Thank you!

your animations back then inspired me 2 improve at drawing and stuff, your shit rocks, hope you have been well. ^w^