Welcome to the CozyNet Blog!

Cozy Blog Cozy Videos Cozy Music Cozy Links Contact About RSS feed Guestbook IRC

My comment box setup shenanigans for the website

While people were out at the lake enjoying their memorial holiday to a BBQ and cold beer, I decided to be extra social by staying inside of my room and setting up a comment system for the website!

For now it’s in a beta testing phase, so I can’t exactly guarantee that any comments will remain or if this platform will stick around.

A good anon in my IRC recommended that I take a look at TinyBBS for a commenting system. It’s an old project that hasn’t been updated in 11 years… BUT, it works! I had some trouble with it at first since documentation is sparse. There’s a schema to be imported for creating a table, as well as some php files to tweak. Despite the sparse documentation, it’s pretty small and not that difficult to just read over and figure out.

Commenting doesn’t require registration, which we’ll see how that pans out. It’s also quite clean and utilizes PHP and MySQL. I don’t know shid about databases, and yeah yeah I know there’s a DB password out there in a PHP file. There isn’t much I can do about it, but there may be some “hardening” I could accomplish.

I had to make some tooling to more easily handle comment deletions and table generation for each blog. It’s kind of rough, but it’s basically just text manipulation of the source material for the specification, then copies the contents where they need to go as well as import the new schema.

You can test it out now in the comment section below! (That is if you’re reading this from the website and not a feed reader.) I’ve also enabled it for the previous two blog posts, “CozyNet Chronicles - Episode 1 (Video)” and “My choco cookie recipe.”

Anyhow, if anyone’s interested, I could try and make a write up on how to set this up yourself, so just let me know. Just bare in mind I don’t know wtf I’m doing and have probably just made a huge security no no.

Thanks for reading my blog!

«»

Comments:

```
<?php
echo "Hello world!";
?>
```
Jan 13, 2023 Permalink Reply
```
Robert'); DROP TABLE posts; --
```
Dec 12, 2022 Permalink Reply
```
" or ""="
```
Dec 12, 2022 Permalink Reply

I like the comment box. It give the website a feeling of being a place. it reminds me of the old days when websites had guest books.

Sep 29, 2022 Permalink Reply

<script>alert(If this message pops out when you open this page, look up how to escape html and javascript. With love ~ lainon);</script>

Sep 9, 2022 Permalink Reply

I would recommend adding a very simple anti-bot "verification" if you can. I once read that something as trivial as an extra box labelled "enter the word 'orange' here" and making it required to post stopped 99% of bots on small sites.

Sep 6, 2022 Permalink Reply

That's a good idea; I'll figure something out with it!

Sep 6, 2022 Permalink Reply

```
nice comment box
```
Sep 6, 2022 Permalink Reply

there is no evidence that it works :p

Sep 6, 2022 Permalink Reply

Well, I don't know how else to prove it!

Sep 6, 2022 Permalink Reply

me neither

Oct 6, 2022 Permalink Reply

hmm what happens if i keep going down a bunch of layers?

Oct 6, 2022 Permalink Reply

again

Oct 6, 2022 Permalink Reply

ooo nice so far!

Oct 6, 2022 Permalink Reply

the input box is cutting out, fren :(

Oct 6, 2022 Permalink Reply

aaaaaaaaa

Oct 6, 2022 Permalink Reply

tiny!

Oct 6, 2022 Permalink Reply

oo its really small now!

Oct 6, 2022 Permalink Reply

well atleast the buttons wrap, kinda

Oct 6, 2022 Permalink Reply

im getting bored

Oct 6, 2022 Permalink Reply

double-stacked buttons :P

Oct 6, 2022 Permalink Reply

...

Oct 6, 2022 Permalink Reply

please stop
- me

Oct 6, 2022 Permalink Reply

INTO THE VOID WE GOOOO

Nov 25, 2022 Permalink Reply

Hey I wonder if I fixed it?? Let'sss seeeeeeee!

Dec 9, 2022 Permalink Reply

Bump, originally

Jan 9, 2023 Permalink Reply

\o/
 H
/ \

Jan 22, 2023 Permalink Reply

I mean... it is readable.. Looks kinda shid, but not bad. I think I can live with this.

Jan 23, 2023 Permalink Reply

Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test

Jan 23, 2023 Permalink Reply

Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test

Jan 23, 2023 Permalink Reply

Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test text Test

Jan 23, 2023 Permalink Reply

```
The comment box is now fixed!
```
Jan 23, 2023 Permalink Reply

```
dubya
```
Sep 6, 2022 Permalink Reply
```
BAZINGA
```
Sep 6, 2022 Permalink Reply