/lynxchan/ - LynxChan

The best engine you will ever shitpost with.

Mode: Thread

Max message length: 4096


Max file size: 1.00 MB

Max files: 3


(used to delete files and postings)


Remember to follow the rules

Keep threads on-topic.
Installation video tutorial
Vichan migration script

Cat 05/19/2019 (Sun) 16:31:57 Id:32d9f6 No. 809 [Reply]
add libre.land to the list.

being a cheap bastard Cat 10/22/2018 (Mon) 03:39:16 Id:8a7f6a No. 633 [Reply]
i like how lynxchan is meant to save people shitloads of money! with certbot and letsencrypt ssl , this money saving concept should be extended to ssl though!!! built in ssl is no longer necessary with free letsencrypt options. also, it costs money tonget the two required cert files. so im running lynxchan on ubuntu, from here to use letsencrypt i install nginx, then delete apache, then set up the sal cert with letsencrypt, right? As a feature request, maybe have it more user friendly tonuse letsencrypt? thanks !! i spend my money on coke and whores so saving money on ssl certs should be at least 3 more blow jobs from whores per week.
6 posts omitted.
i agree with his message but not his rude and absurd tone. no need for the post form to be this bloated across all fes
That's why penumbra has a bunch of stuff put into an extra area that you must click to display. Also, mind you, I only develop 2 FEs.
ching chong
are you a fucking retard?
use certbot - that's what it's for

>letsencrypt should be built right in
no it shouldn't you faggot
just proxy pass with nginx. then you dont need any special support in the backend.

LYNXCHAN IS UNSAFE Cat 02/17/2019 (Sun) 13:07:39 Id:456c94 No. 724 [Reply]
Prevent XSS ! Context Based Encoding
Cross Site Scripting (XSS) is one of the most common but ignored types of attacks. Since Node.js is implemented with JavaScript, there is high-risk of developers introducing XSS vulnerabilities in the code. Output encoding is one of the best ways to prevent XSS attacks. Most view engines such as Jade provides built-in encoding mechanisms. But most important thing is that you should use appropriate encoding to based on the context. Following are some situations that you should use context specific encoding.

URL encode parameters which are appended as url parameters. URL encoding can be done using encodeURI() and encodeURIComponent()javascript built-in methods.
HTML encode parameters which are displayed in HTML. HTML encoding is provided by view engines such as jade as well as frontend frameworks like Angularjs. You also can explicitly do it from server side using htmlencode npm module.
CSS encode parameters which are used in element styles
5 posts and 1 image omitted.
why don't you post them on /g/
(226.86 KB 600x600 729.gif)
Because it's all made up shit by some schizo. Why do you think I didn't give a fuck about it? I'm still waiting for his "surprise". It's been over a month, how long is "soon"?


do I smell a java developer?
You know, I'm starting to think you are talking to your self at this point by pretending to be multiple people.
lynxchan is cool and all but the logo is kinda creepy, might put people off and prevent gaining more popularity

(60.18 KB 1280x720 lynx.jpg)
I.C.U.P Cat 01/24/2019 (Thu) 16:18:17 Id:2341d0 No. 693 [Reply]
Lets talk about IP's. Okay so where the fuck on lynxchan do you see someone's ip? Even logged in as root, i never see my ip or any posters ip. I notice settings about ip, but never seen an ip.
3 posts omitted.
>>697 Like there is some great advantage to making people click on the embed link to see what the video title is? People learn to NEVER click on links for no reason as it could be something malicious. It would be so nice to see what the video is about without having to click in the embed link. Any kind of thumbnail would be cool so people have some idea of what the video is.
>>697 also why are you so quick to discontinue the placeholder FE? The default is great for smaller sites or sites with lots of text. You should keep it going and as an option for people instead of totally getting rid of it.
Because practically no one uses it and the work required to maintain it started to become more significiant. 90% of people pick up penumbra, so I decided to focus on a project that has much more relevance. Also mind you, I wasn't quick to discontinue it. This fe has been going on for over 3 years now.
It makes pages cleaner.
i suggest fetching the title name instead [optionally]

(31.20 KB 395x344 clip test.jpeg)
Cat 03/25/2019 (Mon) 12:06:13 Id:fc63df No. 754 [Reply]
not sure if there's a general suggestions thread but

one of the only real feature I prefer on vichan over lynx is the fact that you can paste a picture from your clipboard into the post. it seems to work on some modern social media shit. it can save a lot of time for the user but not sure if that would jibe with what you're trying to do or if it would be a priority.
4 posts omitted.
ahh okay

as for what it is if you right click an image in your browser, it usually has an option to copy an image, or if you're in gimp or whatever you can ctrl+c and copy an image to your clipboard.

When you're in the reply box in vichan and you hit ctrl+v it will put that image into the files thing as clipboardimage.png.
I see.
idk if it's a feature or a mistake but if you press enter you post your Reply [meaning can't new line]

affects only the reply box on the top of the page, quick reply is ok
Ah yeah, you are right. I was confused by that the other day but didn't pick it up. I'll fix it real quick, I know what it is.
Alright, fixed on 2.1, master and lynxhub branches.

(84.97 KB 811x647 cccp.jpg)
A GUI proposition Николай Кучумов 02/13/2019 (Wed) 17:45:42 Id:f0f324 No. 722 [Reply]
I noticed you're developing a "fast" backend for an imageboard.
I'm a developer of a general-purpose GUI for an abstract imageboard.
Have a look at 4chan.org integration:
The project is hosted on GitHub:
If you're interested I could add support for `lynxchan` in that GUI.
7 posts and 2 images omitted.
Lynchan maker is a rude egotistical faggot who is too stupid to use ssl on lynxhub.com which puts everyone at risk of malicious injections. ON TOP of that is the fact that node.je is extremely unsafe in general, as is the mongo db. It is a honeypot and full of major security issues. Go ahead and work with the lynxchan maker... good luck with that. You will find out that he is a total faggot moron.
If you want security I suggest you leave for sshchan
(306.14 KB 593x540 798.png)
>11 commits
>no mention of why lynxchan is not secure
Cute. I won't even delete it.
>>740 Says the faggot who is too stupid to use ssl on lynxhub.com which puts every single visitor to that site at risk of malicious code injections. Fucking faggot.
have you heard of 4 chan x

(65.25 KB 250x146 1.png)
2.2 Lou Skunt 03/16/2019 (Sat) 01:58:25 Id:c34afd No. 745 [Reply]
Will lynxchan ver 2.2 render penumbra useless?
Much on the contrary, 2.2 will install penumbra as the default front-end from the setup script.

Why do you ask?
I asked because penumbra looks like shit on mobile phones. People use browsers from mobile phones. I was hoping that someone would make a decent front end. Thousands of people go to stupid php boards on mobile phones each hour like 4chan. But hey, let's fucking ignore the world trend of people using mobile to browse.
Oah, and your efforts to block people are so fucking stupid. Hey, dipshit. It is impossible to block people from a forum. Your time would be better spent learning some manners or making lynxchan moblile capable. Fucking douchebag.

Oah, and use ssl on this shitty site. Who would trust code from a jackass who is too fucking stupid to use a basic security measure like ssl. You OBVIOUSLY have no respect for other people's security. Fucking faggot douchebag.
If you want to submit patches to make penumbra work better on mobile, you are welcome.

This site is not meant to be heavily used. Feel free to stop posting here and instead use some other means of communication, like irc or e-mail.
>phone poster woes
who cares

Cat 03/04/2019 (Mon) 19:20:19 Id:a1051e No. 742 [Reply]
>[477] #lynxchan, You need to login to services to join or speak in that channel.
But no surprise there
It was to prevent spammers before they pick up for good again.

ssl Cat 02/07/2019 (Thu) 07:48:51 Id:7bebf6 No. 711 [Reply]
So I got a ssl cert from godaddy. I put the two .ssl files in the src/be directory. I enabled ssl via admin panel and it is set to "1" in the general json I get the following error when starting lynxchan and ssl does not work. Is there another step or something im missing?

>>>Failed to listen to HTTPS.
Error: error:0906D06C:PEM routines:PEM_read_bio:no start line
at Object.createSecureContext (_tls_common.js:113:17)
at Server (_tls_wrap.js:870:27)
at new Server (https.js:62:14)
at Object.createServer (https.js:85:10)
at startSSL (/root/LynxChan/src/be/workerBoot.js:91:35)
at startListening (/root/LynxChan/src/be/workerBoot.js:148:5)
at dbBooted (/root/LynxChan/src/be/workerBoot.js:213:7)
at preIndexSet (/root/LynxChan/src/be/db.js:826:5)
at initBoardIndexedCollections (/root/LynxChan/src/be/db.js:842:3)
at initGlobalIndexedCollections (/root/LynxChan/src/be/db.js:858:3)
Worker 2 booted at Thu, 07 Feb 2019 07:41:23 GMT
Failed to listen to HTTPS.

Message too long. Click here to view full text.

5 posts omitted.
(37.69 KB 530x325 cc.jpg)
>>716 You ALWAYS have an excuse or rude comment for everything that you do wrong but are too stupid to fix. There is a reason that lynxchan did not amount to anything... mostly because you are a fucking idiot. Lynxchan is not secure, has a shitty front end that no one uses, and all the lynxchan boards have no
real website or users. MEWCH was the only good lynxchan board and that failed because of the horrible security flaws. Lynxchan is a joke made to fool stupid people who are not aware of security.
Mewch didn't fail due to security flaws. It didn't fail whatsoever. Any rumor you hear about mewch is simply untrue.
ok dude
bad anime girl, bad
>It didn't fail whatsoever
Is that why it doesn't exist anymore? Lol

Cat 02/05/2019 (Tue) 02:53:16 Id:165e20 No. 709 [Reply]
What theme should I install?
whatever you like.


no cookies?