Another promise for a new site!

[Pi]

How far along is the new FA (since we've seen visible proof of production), and is it still codenamed "Ferrox"? by Mjollnir

It's at around 50%. We're hoping to have it out by Summer. And Ferrox had a few broken variations, and some developers who lied about their entire dev time... then quit.

In before everyone starts complaining about the new theme plastered on top of the same broken codebase.

Meantime, I point out that the server hosting Ferrox's source code has been down for a while, to a completely tepid response.

[ProvincialTwit]

Does a bunch of mangled CSS, PHP, and HTML really count as "source code"?

[Pi]

Yeah, yeah, thread necromancy, but:

<tori_k> So, I had a light discussion with some coder-furries recently, and it got me wondering about the development of Ferrox.
<tori_k> Is Ferrox open source?
<&net-cat> It might be eventually.
<tori_k> It was at one point, though I don't know what happened.
<&net-cat> It's not Python anymore.

They REALLY DID go with the "throw away everything that was written, one more time!" route. Working code, with a working database converter, tossed out for ... no clear reason. Since furries have a penchant for ultra-shitty languages, I'm just going to assume they're rewriting it in PHP again.

[Jim Demintia]

My guess is Perl, PHP, or ASP.NET. Microsoft's ASP.NET stack (as opposed to Novell's Mono stack) is well-known for having performance problems, so if they are using that, then heh. It's also not really popular, at least compared to other options. It tends to be used by shops that are already committed to Microsoft in some way. The fact that the de-facto standard .NET language to use it with is VB doesn't help win new converts, either. Or that IIS still blows chunks after all these years.

I doubt it's Perl...but I'm not going to get into my opinions on Perl. PHP seems most likely simply because there's a ton of barely-literate community-college students who learn it. It's also really easy in PHP to shit out line after line of code with no real thought to what you're doing, since they don't force any design convention at all on you.

As far as why they tossed out the extant codebase, it's probably because whoever is working on it now can't understand the MVC pattern used by Django.

Oh, I totally forgot about Ruby. Maybe that's because I don't take Rails seriously. Yeah...I could see them trying that.

[ProvincialTwit]

ASP.NET / IIS don't seem very likely, given how linuxfaggy most technically-inclined furries tend to be.

PHP is probably the most likely candidate, given how much code already exists in the wild for it and how ridiculously easy it is to write in.  I'd lean toward Ruby on Rails, except I'm not terribly confident they could actually get mod_rails to work.

[Pi]

I brought this up in the world headquarters of the alleged rumor mill for pushing the anti-FA agenda:

<Eevee> who is working on it
<Eevee> just net-cat??
<@nrr> Eevee: ice-wolf
<@nrr> Eevee: he's all, "OMG GOTTA USE PHP STILL GUYS!!1!11!1!11"

Oh, yeah, this rewrite is gonna go over well. A horde of undisciplined furries, suckling from the teat of the world's worst web development language, trying to make a site that's scalable and secure.

On the plus side, they'll probably recode all of the same fucked vulnerabilities from last time.

[Jim Demintia]

Who the hell is ice-wolf?

One of such vulnerabilities was recently - and quite enthusiastically, if I say so myself - advertised by Eevee

Tell 'em the rest of the story, Yak. He came to you and you told him to get lost, you didn't care.

It's also very, um, telling that icon of his. Video games has ruined a generation of computer scientists. Not that there was ever any potential from the FA crowd, but yeah.

Someone who chose, in my view, to essentially extort immediate fixes out of FA for the issue he thought, in my place, was the most important of things to fix on FA. Dude, it's been there for years; another month or two until I eventually got to fixing that on a regular schedule wouldn't have changed anything. I actually had a big thing planned in that regard.

Yep, and Dragoneer's going to come up with a better site, release Ferrox, and bring about furry nirvana on Earth this weekend. After he gets done with his TF2 server, of course.

Someone seriously needs to come up with a nasty-ass Flash virus or something for FA. Seems like that sort of action is all they listen to anyway.

Also, sorry to keep editing this, but the more I read from his post, the better it gets:

Someone who chose, in my view, to essentially extort immediate fixes out of FA for the issue he thought, in my place, was the most important of things to fix on FA. Dude, it's been there for years; another month or two until I eventually got to fixing that on a regular schedule wouldn't have changed anything. I actually had a big thing planned in that regard.

I guess I'm not sure what specifically he's discussing, but I'm pretty sure that it was common knowledge that FA had vulnerabilities of this nature. It's just that no one ever did anything with them, by some stroke of luck. The new comment code also had those problems, which is what is new. And rewriting 60% of FA? Assuming that's not some kind of ridiculously-exaggerated statement, you know, it comes down to the fact that you shouldn't be using that code base, period. But since Dragoneer is still mentally fifteen, and manages his site accordingly, and since they will not allow anyone competent to help, here we are.

Call it security through obscurity or any other buzzword you wish

Wow. Well, I don't know about you all, but when I think of a well-defined and widely-accepted concept such as "Security through obscurity", I think "buzzword".

[MazelTovCocktail]

Maybe it's just me, but I can't help but think that people are freaking out way too much about the fate of what is basically the web's largest furry spank bank.

[Conan]

I brought this up in the world headquarters of the alleged rumor mill for pushing the anti-FA agenda:

That thread is the best. Concrete proof that the administration of FA just doesn't care and that they're completely incompetent. 

Why do people give money to this site again?