/lynxchan/ - LynxChan

The best engine you will ever shitpost with.



Keep threads on-topic.
Roadmap
Installation video tutorial
Vichan migration script

New Thread:



Max Message Length: 4096
Don't show location
Make sure I have a block bypass
Files:
Spoiler Max File Size: 1.00 MB
File Limit Per Post: 3
Remember to follow the rules .


List of chans using LynxChan StephenLynx##xS3ESC 03/09/2016 (Wed) 20:10:56 Id: 8c0391 Locked Pinned No. 285 [Reply]
Edited last time by StephenLynx on 06/26/2018 (Tue) 15:41:21.



Cat Board owner 01/03/2016 (Sun) 12:07:51 Id: 9ca3a6 Locked Pinned Bumplocked No. 219 [Reply]
Open file ( 3.93 MB 640x480 1451822329331.webm )
NEVER EVER



Cat 07/17/2018 (Tue) 23:13:13 Id: 7bd817 No. 543 [Reply]
[code]
<html>
<h1><span style="background-color: #00ccff;">GREETINGS</span></h1>

Cat 07/18/2018 (Wed) 02:23:21 Id: 3b52e8 No. 544
get rekt tbh



Hello Cat 06/25/2018 (Mon) 07:26:19 Id: c87e0c No. 541 [Reply]
Open file ( 13.64 KB 405x194 k.PNG )
Why is that? Lyxconfig says max uploadable files are 50MB.

Mega Milk 07/03/2018 (Tue) 16:10:13 Id: e84ab8 No. 542
Open file ( 1.84 KB 465x36 Capture.PNG )
>>541
Set your requests larger



StephenLynx 05/18/2018 (Fri) 19:17:21 Id: 87e62c No. 540 [Reply]
Open file ( 10.65 KB 215x212 logo.png )
LynxChan just completed it's third year and I must say, this project's past year was pretty good. More and more sites running it, including 2 more that migrated and have a considerable amount of traffic. 1.9 and 2.0 fixed it's oldest woes, eliminating slow build times entirely and making the cache much more robust.

Moving forward, I have realized that user-owned boards just didn't caught on. To this day, endchan is still the only LynxChan with relevant traffic that allows it. While I don't think it's worth doing a 180 on how settings and features work to change the focus of the engine, I am going to focus on improving features that benefit sites without user-owned boards. For this, I really encourage chan owners to bring me suggestions of areas that can use improvement for these sites.

I'd like to take this time to thank everyone who contributed this past year. Megamilk, for giving 1.8 and later versions a proper real-world testing. Odilitime for taking his time to test 2.0, which revealed a serious bug. And fapchan for giving a proper migration to be performed, it really helped to pave the way for future migrations.

I'd also like to remember past contributors such as lleaff for giving valuable insight on the very early stages of development, dunecoon for his work with front-ends and doke for designing the face of the project.



LynxChan Installation Tutorial Cat 01/06/2017 (Fri) 01:14:08 Id: e5d5f0 No. 385 [Reply]
Open file ( 10.49 KB 979x973 ebin.jpg )
This is for debian.

Pre-install: Make sure you've created a user account with sudo rights, and use it for the rest of the tutorial. Do not run lynxchan on the root account.

1. Install nodejs

curl -sL https://deb.nodesource.com/setup_6.x | sudo -E bash -
sudo apt-get install -y nodejs
sudo apt-get install -y build-essential

2. Install Mongodb
sudo apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv EA312927
echo "deb http://repo.mongodb.org/apt/debian wheezy/mongodb-org/3.2 main" | sudo tee /etc/apt/sources.list.d/mongodb-org-3.2.list
sudo apt-get update
sudo apt-get install -y mongodb-org

3. Install imagemagick
Message too long. Click here to view full text.
6 posts omitted.

Cat 04/28/2018 (Sat) 19:47:56 Id: 9f5237 No. 532
How to put favicon added in the guide too

Mega Milk 05/01/2018 (Tue) 01:26:23 Id: b3efe5 No. 533
>>532
Woohoo!

Cat 05/12/2018 (Sat) 15:48:18 Id: 0191e4 No. 536
>>385
hey homey is there a bulgarichan im not aware of?

Cat 05/13/2018 (Sun) 07:46:17 Id: 820108 No. 538
Fixed the guide (again and better) specially the Nginx proxy pass + Let's Encrypt HTTPS certs and easy automatic renewal part

any kind of feedback is welcomed and i'll add it

https://git.teknik.io/nic/berndchan/wiki/How-to-Install-Lynxchan-2.0.0-on-Debian-9.4-

nic 05/14/2018 (Mon) 18:02:19 Id: b52509 No. 539


Cat 02/11/2018 (Sun) 23:39:11 Id: d23996 No. 524 [Reply]
Open file ( 96.34 KB 750x600 200912102227351.jpeg )
Please explain how is engine better than Meguca.

Cat 02/12/2018 (Mon) 11:21:12 Id: c24fbe No. 525
You tell me why I should care about meguca.

Cat 05/08/2018 (Tue) 17:24:18 Id: 292745 No. 534
>>525
it's not written in spaghetti language

Cat 05/12/2018 (Sat) 16:04:10 Id: db7b17 No. 537
sans font looks nice (4chan a shit)



Cat 12/28/2017 (Thu) 04:25:58 Id: c95102 No. 495 [Reply]
Open file ( 44.54 KB 698x265 owned.png )
What is known about this claimed exploit?

Cat Board owner 12/28/2017 (Thu) 11:21:02 Id: 36351e No. 496
Aside from the possibility of running mongo accepting external connections without authentication enabled, nothing.

I am skeptical of anything that mentions or involves smiley, that image reeks of goon trolling. I figure the first place to be owned would be a large site, like mewch or endchan. At least this one, since its managed by me.

Mega Milk 12/29/2017 (Fri) 04:56:48 Id: 66a73b No. 499
>>495
What site is/was this?

nanote 12/29/2017 (Fri) 05:42:22 Id: 3914a8 No. 500
nanotech#zvNTEK 12/29/2017 (Fri) 05:42:40 Id: 3914a8 No. 501
It was a prank lmao



Cat 01/04/2018 (Thu) 16:28:54 Id: d3100a No. 505 [Reply]
Open file ( 83.88 KB 1273x518 XSS.png )
5 posts omitted.

Broken HTML generation OP 01/18/2018 (Thu) 17:44:42 Id: 61d67f No. 517
Markdown links containing quoted text or quotes to posts generate invalid HTML. For example:

http://google.com/>507
http://google.com/ class="quoteLink" href="/lynxchan/res/505.html#507">>>507
http://google.com/ class="quoteLink" href="/lynxchan/res/505.html#507">>>>/lynxchan/507

This could have security implications (the resulting HTML looks quite bad), but I cannot find a way to exploit it at first glance. Suggested fix:

diff --git a/src/be/engine/postingOps/common.js b/src/be/engine/postingOps/common.js
--- a/src/be/engine/postingOps/common.js
+++ b/src/be/engine/postingOps/common.js
@@ -471,9 +471,9 @@ exports.replaceMarkdown = function(message, posts, board, replaceCode, cb) {

});

- message = message.replace(/(http|https)\:\/\/\S+/g, function links(match) {
+ message = message.replace(/https?\:\/\/[^\s<>"]+/g, function links(match) {
Message too long. Click here to view full text.

Cat 01/19/2018 (Fri) 00:07:21 Id: 5a92bd No. 518
>>517
ty, ill look into it

Cat 01/19/2018 (Fri) 12:00:05 Id: e7347a No. 519
Fixed, all I had to do was to process links before quotes.

Fixed only on 2.0, I will fix on 1.8 and 1.9 if I find some way to exploit that.

But given how stuff is sanitized anyway, I don't think that would be possible.

Cat 01/22/2018 (Mon) 20:08:52 Id: 248a80 No. 520
test.

Testing Tester 01/28/2018 (Sun) 17:16:16 Id: 500963 No. 523
Open file ( 554.91 KB 400x393 1093125a34d1c4e753c8c6776442aed3.gif )
Open file ( 10.78 KB 228x221 index.jpg )
Test



Markdown in /<board>/catalog.json API Cat 01/23/2018 (Tue) 00:56:37 Id: 24b91a No. 521 [Reply]
Is there any reason that the catalog API json doesn't have the comment in markdown? The API has markdown in the thread views, but not catalog.

Cat 01/23/2018 (Tue) 21:08:40 Id: 04c95d No. 522
If you are the guy that e-mailed me, there is no good reason and I added it on 2.0.


Reason:
Password:
Global
Delete only files
Delete media (Actually removes the saved files from the server, standard file deletion only removes the reference to the selected posts)

Captcha(Used only for reporting): No cookies?

[ 12345 ]