Bitcoin Forum>Economy>Marketplace>Lending
Author

Topic: Lending Website (Read 1535 times)

bombartier357
full member
Activity: 148
Merit: 100
Lending Website
June 30, 2013, 08:40:13 AM
#34
Quote from: vlees on June 30, 2013, 04:29:17 AM
Quote from: bombartier357 on June 29, 2013, 07:19:23 PM
Quote from: acs26 on June 29, 2013, 06:59:26 PM
Seems like some serious bugs, or glitches. Can't log-in. I guess it's because I registered from another computer/IP.

Yeah, if you give me your ip I can add it to my white list if you like.

Oh, that's why I couldn't log in.

You do know some people have dynamic IP's that change up to once an hour, right?

Yes I know.  It is for security.  I should probably put some kind of message to the user when this happens so people are not scratching their heads...
vlees
full member
Activity: 196
Merit: 100
Re: Lending Website
June 30, 2013, 04:29:17 AM
#33
Quote from: bombartier357 on June 29, 2013, 07:19:23 PM
Quote from: acs26 on June 29, 2013, 06:59:26 PM
Seems like some serious bugs, or glitches. Can't log-in. I guess it's because I registered from another computer/IP.

Yeah, if you give me your ip I can add it to my white list if you like.

Oh, that's why I couldn't log in.

You do know some people have dynamic IP's that change up to once an hour, right?
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 29, 2013, 07:19:23 PM
#32
Quote from: acs26 on June 29, 2013, 06:59:26 PM
Seems like some serious bugs, or glitches. Can't log-in. I guess it's because I registered from another computer/IP.

Yeah, if you give me your ip I can add it to my white list if you like.
acs26
Activity: -
Merit: -
Re: Lending Website
June 29, 2013, 06:59:26 PM
#31
Seems like some serious bugs, or glitches. Can't log-in. I guess it's because I registered from another computer/IP.
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 29, 2013, 05:11:35 PM
#30
Quote from: vlees on June 29, 2013, 03:22:57 PM
Quote from: bombartier357 on June 29, 2013, 12:36:10 PM
Quote from: vlees on June 29, 2013, 12:00:22 PM
I am able to login and my username is "'"

Did you try recently?  I am trying to pull up your profile and it kicks me out.

Apparently you deleted my profile now...

Nope you are still in there.  I can change your user name if you like....
vlees
full member
Activity: 196
Merit: 100
Re: Lending Website
June 29, 2013, 03:22:57 PM
#29
Quote from: bombartier357 on June 29, 2013, 12:36:10 PM
Quote from: vlees on June 29, 2013, 12:00:22 PM
I am able to login and my username is "'"

Did you try recently?  I am trying to pull up your profile and it kicks me out.

Apparently you deleted my profile now...
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 29, 2013, 12:36:10 PM
#28
Quote from: vlees on June 29, 2013, 12:00:22 PM
I am able to login and my username is "'"

Did you try recently?  I am trying to pull up your profile and it kicks me out.
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 29, 2013, 12:33:15 PM
#27
Quote from: ?? on ??
I really hope for your own sake that you learn from this lesson and close this site before you get burned for real.
It's not just "I'll fix these bugs and it'll be ok". Trust me, there are more of them.

Come back after 2 years with enough experience to make this work.

Actually, why do I even bother about you? Some people just have to learn the hard way.
J.R.R. Tolkien - "The burned hand teaches best. After that, advice about fire goes to the heart."

"Look before you leap for as you sow, ye are like to reap."
Samuel Butler
vlees
full member
Activity: 196
Merit: 100
Re: Lending Website
June 29, 2013, 12:00:22 PM
#26
I am able to login and my username is "'"
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 29, 2013, 11:39:19 AM
#25
Quote from: vlees on June 29, 2013, 08:44:22 AM
I have no idea what I am looking at.

I think some malformed database or query is the source but I hope this is not normal what I am seeing:


What is your user name?  If you do not use a common user name, which they may be perceived as an attempt to penetrate the system.  Then you will not be able to login.

I see the most recent user that registered is named "."
vlees
full member
Activity: 196
Merit: 100
Re: Lending Website
June 29, 2013, 08:44:22 AM
#24
I have no idea what I am looking at.

I think some malformed database or query is the source but I hope this is not normal what I am seeing:
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 29, 2013, 08:39:01 AM
#23
Fixed XSS errors and added encrypted session hashing.

Working on SSL now.  Need to get my validation done and I will get it up and running shortly.
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 28, 2013, 03:11:49 PM
#22
Quote from: 🏰 TradeFortress 🏰 on June 28, 2013, 12:20:24 PM
I did some light testing on your site.

I was able to register as the username admin.

You are running:
Apache/2.2.16 (Debian) Server at www.lendmecoin.com Port 80

This version is vulnerable.
http://httpd.apache.org/security/vulnerabilities_22.html

You also have some XSS vulnerabilities:



Another one would be that you have been logged out of lendmecoin.



Yes I did notice that you were able to register as the admin.  I will be solving XSS security issues sometime today after I get home from work.

Thank you for pointing out the vulnerabilities of the apache that I am currently using.  I will visit your link sometime this weekend and get anything that I have missed sorted out.

Thanks again for all the help.
🏰 TradeFortress 🏰
vip
Activity: 1316
Merit: 1043
👻
Re: Lending Website
June 28, 2013, 12:20:24 PM
#21
I did some light testing on your site.

I was able to register as the username admin.

You are running:
Apache/2.2.16 (Debian) Server at www.lendmecoin.com Port 80

This version is vulnerable.
http://httpd.apache.org/security/vulnerabilities_22.html

You also have some XSS vulnerabilities:



Another one would be that you have been logged out of lendmecoin.

Damnsammit
sr. member
Activity: 406
Merit: 250
Re: Lending Website
June 28, 2013, 08:54:20 AM
#20
just signed up... not qualified for anything.

How do I take a loan?  Was going to try it out.  Looks like a cool site.
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 28, 2013, 07:04:23 AM
#19
Quote from: akabmikua on June 28, 2013, 03:08:07 AM
So, how do I increase my credit score?

Your credit will increase over time automatically, if you have a valid bitcoin address in the system.  You can also complete loans, and that will give you a boost for every one that is completed.
akabmikua
full member
Activity: 223
Merit: 100
Re: Lending Website
June 28, 2013, 03:08:07 AM
#18
So, how do I increase my credit score?
🏰 TradeFortress 🏰
vip
Activity: 1316
Merit: 1043
👻
Re: Lending Website
June 27, 2013, 10:21:13 PM
#17
I'm happy to look over your code and explain to you how to fix it (and how people can exploit it).
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 27, 2013, 10:18:09 PM
#16
Any suggestions that do not involve having others do the work for me?

If my site crashes and burns I want to at least learn something from the experience.
nimda
hero member
Activity: 784
Merit: 1000
0xFB0D8D1534241423
Re: Lending Website
June 27, 2013, 07:46:06 PM
#15
Quote from: bombartier357 on June 27, 2013, 12:05:49 PM
I am thinking of using Back Track 5 to test my system.  Would anyone recommend something different for penetration testing?
You better hire a pentester.
🏰 TradeFortress 🏰
vip
Activity: 1316
Merit: 1043
👻
Re: Lending Website
June 27, 2013, 07:21:33 PM
#14
Quote from: bombartier357 on June 27, 2013, 12:05:49 PM
I am thinking of using Back Track 5 to test my system.  Would anyone recommend something different for penetration testing?
You're not going to have any luck using it correctly.

bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 27, 2013, 12:05:49 PM
#13
I am thinking of using Back Track 5 to test my system.  Would anyone recommend something different for penetration testing?
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 27, 2013, 11:45:57 AM
#12
Quote from: farlack on June 27, 2013, 02:46:46 AM
Quote from: ?? on ??
bombartier357 just PM'd me if he needs to use a signed ssl certificate. Shocked

Please, close this site for your own good. Since you're lending money, you'll be the one to get scammed when someone will find a bug. Start from something smaller/simpler. This should be your 100-th website, not first. You should know how to do everything by now, not ask people instead of google.
Start by creating a forum, than a blog, than a shop... See you in two years with enough experience to make a professional lending website.

I doubt he pmed you so you could blast his questions in a bad way all over the forums. He obviously asked because he wants to learn, and not have everything handed to him, unlike some that are posting asking for a shitton of money to hire programmers for an amazing idea they have.

It is quite alright that he is posting my question so others can judge me.  I have nothing to hide.  I will continue to make improvements to the site everyday regardless.

It might not be a great idea to have this as my first site.  I like to learn to run before I walk.  I do expect to lose money initially, and I have already come to terms with that.  I have requested to have other help me code my site in the past, but have found that they are unreliable coders and typically are way too expensive for what they offer.  I think it is in my best interest to learn these things on my own so that I do not have to lean on anyone in the future.  If I had time to program 100 sites before I made this one I would probably be an old man and none of my ideas would come to fruition.

Although, I do appreciate the advice on the SSL certificate.  I did have an idea on what direction to go in, but I did want some confirmation with someone who knew what they were talking about.

Thanks again!
farlack
legendary
Activity: 1310
Merit: 1000
Re: Lending Website
June 27, 2013, 02:46:46 AM
#11
Quote from: ?? on ??
bombartier357 just PM'd me if he needs to use a signed ssl certificate. Shocked

Please, close this site for your own good. Since you're lending money, you'll be the one to get scammed when someone will find a bug. Start from something smaller/simpler. This should be your 100-th website, not first. You should know how to do everything by now, not ask people instead of google.
Start by creating a forum, than a blog, than a shop... See you in two years with enough experience to make a professional lending website.

I doubt he pmed you so you could blast his questions in a bad way all over the forums. He obviously asked because he wants to learn, and not have everything handed to him, unlike some that are posting asking for a shitton of money to hire programmers for an amazing idea they have.
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 25, 2013, 07:11:17 PM
#10
Quote from: 🏰 TradeFortress 🏰 on June 25, 2013, 04:59:49 AM
If you are interested, I'm happy to do a code review for you and point out any bugs / security issues / etc for a link to CoinLenders.com

I may take you up on your offer at some point.  At this time I am determined to work through any problems that I may have.

Thank you for the offer.
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 25, 2013, 07:09:50 PM
#9
Quote from: ?? on ??
Use https!
You've shown so much unprofessionality, that I'd be scared to use your service. Now and in the future.
If your site has so many problems right now, what bugs will people find if it becomes popular?

Website at this stage is good only for "closed alpha", definitely not for "beta testers".

Yes I agree I do need https.  Which is something I am working on.  You really think that people will not use my service?

Perhaps it was a bit premature to call it "beta" testing, when in fact you are right, it is more like closed alpha. 

I learn from making mistakes more than anything, and am not a professional programmer.  This is something that I am doing in my spare time to contribute to the bitcoin community.

Please keep the suggestions coming.  What about my service would you consider unprofessional?
🏰 TradeFortress 🏰
vip
Activity: 1316
Merit: 1043
👻
Re: Lending Website
June 25, 2013, 04:59:49 AM
#8
If you are interested, I'm happy to do a code review for you and point out any bugs / security issues / etc for a link to CoinLenders.com
halfawake
hero member
Activity: 490
Merit: 500
Re: Lending Website
June 25, 2013, 02:36:20 AM
#7
It'd be a good idea to add some pages that don't require login to view.  It looks pretty minimal to me.
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 23, 2013, 12:15:50 PM
#6
Added guide section and ironed out initial bugs.
bombartier357
full member
Activity: 148
Merit: 100
Re: Lending Website
June 22, 2013, 08:03:00 PM
#5
Quote from: 🏰 TradeFortress 🏰 on June 22, 2013, 07:54:36 PM
register.php and other pages:

Quote

Add
Code:
 before the head.

Ah perfect.  Thank you for pointing that out.            

                    

    






    

        

            

                🏰 TradeFortress 🏰            

            
vip

            

                                                                                                            

            
Activity: 1316

            
Merit: 1043

            

                            

            
👻

            

                            

        

        

            

                

                                    

                

                    

                                                Re: Lending Website                    

                    
June 22, 2013, 07:54:36 PM

                

                

                    #4                

            

            

                register.php and other pages:

Quote

Add 
Code:
 before the head.            

                    

    






    

        

            

                bombartier357            

            
full member

            

                                                                                                                                                                                                                                                                        

            
Activity: 148

            
Merit: 100

            

                            

            

            

                            

        

        

            

                

                                    

                

                    

                                                Re: Lending Website                    

                    
June 22, 2013, 06:52:35 PM

                

                

                    #3                

            

            

                
Quote from: 🏰 TradeFortress 🏰 on June 22, 2013, 06:50:06 PM
 and nothing above it so your inputs are not thin.

I am always looking for ways to improve.  I am a self taught programmer and if you were to elaborate, then I can possibly make some fixes.

Thanks.            

                    

    






    

        

            

                🏰 TradeFortress 🏰            

            
vip

            

                                                                                                            

            
Activity: 1316

            
Merit: 1043

            

                            

            
👻

            

                            

        

        

            

                

                                    

                

                    

                                                Re: Lending Website                    

                    
June 22, 2013, 06:50:06 PM

                

                

                    #2                

            

            

                 and nothing above it so your inputs are not thin.            

                    

    






    

        

            

                bombartier357            

            
full member

            

                                                                                                                                                                                                                                                                        

            
Activity: 148

            
Merit: 100

            

                            

            

            

                            

        

        

            

                

                                    

                

                    

                                                Re: Lending Website                    

                    
June 22, 2013, 05:41:17 PM

                

                

                    #1                

            

            

                Hello,

Made some revisions to my lending website.

Everything is automated.  

Get a loan in 1 click.

Cleaned up user interface.

I could use some beta testers.  If anyone is looking for a small loan feel free to check it out.

www.lendmecoin.com

You can message me using the mailing system if you have questions.  My user name is "Admin".            

                    

    







    
    

    

    
Bitcoin Forum>Economy>Marketplace>Lending

    

    

        

        
Jump to: