|
< Earlier Kibitzing · PAGE 69 OF 459 ·
Later Kibitzing> |
Nov-02-19
 | | Tabanus: Thanks <Annie>! I'm now thinking probably many of the highest rated games still missing in CG are in the World and continental team Ch events. |
|
Nov-03-19
 | | kingscrusher: Please can there be a 'switch player' option when using the Opening explorer for a particular player.
As an example, say I want to explore the use of 2.Nc3 by World chess champions, I can start with: Repertoire Explorer: Magnus Carlsen (white) But I would like a list of World champions to switch to. So it would basically substitute the pid=52948 with other ID numbers based on the world champion chosen. E.g.
Fischer
19233
Tal
14380
Kasparov
15940
I think this would make the current Opening explorer for a player even more interesting and useful for quickly being able to check World champions from a current exploration. |
|
| Nov-03-19 | | diceman: Speaking of Opening/Repertoire Explorer, Id like to see one on each tournament page. <Tournament Explorer?> We've just had World Cup/Grand Swiss.
It would be nice to quickly see which openings were played, and which variations used. It is listed on the tournament results pages,
but it's a clumsy way to look for them.
You can do an entire database search, but you need to commit to a variation, rather then see all that were played. |
|
Nov-04-19
 | | Annie K.: Interesting ideas, thanks. :)
<diceman> maybe making the tournament games sortable by the ECO column would be a fairly easy to implement and practical way to offer a view of games grouped by opening types. That's definitely something to consider. Meanwhile, you already have some options for a narrower search in the homepage Advanced Search options! :) Recent (about the last 3 years or so) events are selectable in the Event line. You can combine that with an ECO (either single code or range works) specification, and get a pretty good result. For example, here are all the French (ECO C00-C19) games from the recent European Team Championship: https://www.chessgames.com/perl/che... (and of course I could have asked for a smaller ECO range if I were only interested in a specific variation...) |
|
Nov-04-19
 | | WannaBe: Daniel had the idea that would make all the columns sortable. By # of moves, ECO, results, etc... |
|
Nov-04-19
| | Annie K.: Yes, I know he did. Well, there's no point sorting by the Year and Event fields, and there is already the "Refine search" option at the bottom of the games list where you can filter by result. Number of moves, eh, maybe. Sorting by ECO, though, would definitely be a valuable improvement. |
|
| Nov-05-19 | | diceman: <Annie K.:
<diceman> maybe making the tournament games sortable by the ECO column would be a fairly easy to implement and practical way to offer a view of games grouped by opening types.> It's a start. :) |
|
| Nov-06-19 | | Messiah: I tried again, and the maximal password length is still 12 characters... Do you still store it in plaintext? |
|
| Nov-06-19 | | Messiah: Hmmmmm, there are pretty insecure ciphersuites used here, please drop at least the TLS_RSA_WITH_RC4_128_SHA and the TLS_ECDHE_RSA_WITH_RC4_128_SHA. RC4 is horribly broken. |
|
| Nov-06-19 | | diceman: <Annie K.:
<diceman> maybe making the tournament games sortable by the ECO column> The way modern chess is going, it could be nice to have a Classical/Rapid/Blitz/Armageddon/Fischer Random, column sort. |
|
Nov-06-19
| | Annie K.: <Messiah> I'll pass your comments on. We're still working on strengthening security. <diceman> hmm, sort by gametype, not to mention *show* a gametype column. I like this idea too. Thanks! :) <All> we just imported the latest FIDE ratings now. |
|
Nov-06-19
 | | Check It Out: I second <Messiah>'s concern about password security. |
|
Nov-06-19
 | | Sargon: <Messiah: Hmmmmm, there are pretty insecure cipher suites used here, please drop at least the TLS_RSA_WITH_RC4_128_SHA and the TLS_ECDHE_RSA_WITH_RC4_128_SHA. RC4 is horribly broken.>
Where are you gleaning this info from? The server should be configured with only strong cipher suites, which of course means no 128-bits or use of anything which has been deemed insecure. I’ll review the config and make any additional adjustments needed. ---
As for the password system, upgrading it is at the top of the priority list, including: 1) Passwords will no longer be stored (or emailed, of course) in plain text. A reset process will instead be introduced. 2) All members will be required to use strong passwords. Passwords which are deemed weak will require a reset. 3) Longer passwords will be supported.
4) Salting will be used.
Please offer any comments you think would help. ---
Since you obviously have knowledge in the area or digital security, <Messiah>, with your consent I’ll use you for testing the new password reset process. I greatly value any peer review on issues such as this. Also, as I mentioned above, please elaborate on the basis for you assertion regarding any use of weak ciphers. I configured the web server based on the recommendations from the “SSL/TLS Strong Encryption: How-To” here: https://httpd.apache.org/docs/2.4/s...
Thanks for any and all feedback, and I’ll give the config another review to see what remains to be "tightened up”... |
|
Nov-06-19
| | Sargon: <Messiah: Hmmmmm, there are pretty insecure ciphersuites used here, please drop at least the TLS_RSA_WITH_RC4_128_SHA and the TLS_ECDHE_RSA_WITH_RC4_128_SHA. RC4 is horribly broken.> I’ve already made one adjustment, and I’m looking for anything else than can be done. Please let me know when you can confirm the absence of any weak cipher suites. |
|
| Nov-07-19 | | Messiah: <Sargon> Feel free to use my account for the test. I rarely check the incoming e-mails of my registered mailbox (this is an 'almost-black-hole' address), but from now I will do it at least once daily. I am on holiday until 18 November without travelling or having a family, so it is safe to say I have time. The easiest test and check for the TLS-layer is using https://www.ssllabs.com/ssltest/ana... - in some details I don't agree with their scoring strategy, but it is really useful, nonetheless. BTW I am a security- and cryptography-focused Linux/UNIX engineer with extremely weak coding skills. |
|
Nov-07-19
| | Sargon: <Messiah: [...] The easiest test and check for the TLS-layer is using https://www.ssllabs.com/ssltest/ana... - in some details I don't agree with their scoring strategy, but it is really useful, nonetheless.> Thanks, <Messiah> I’ll run through their recommendations. <diceman: maybe making the tournament games sortable by the ECO column would be a fairly easy to implement [...]> Yes, <diceman>, I’ve often wished for robust column sorting features, and also more info such as the game type,which was also mentioned. I’ll see what I can do to get these features going... |
|
Nov-08-19
 | | MissScarlett: W Potter vs Blackburne, 1871 Blackburne vs W Potter, 1871 Not sure why these and an earlier submission have been classified as <CORRESPONDENCE>, but, just in case, the <CC> stands for <Chess Club> not <correspondence chess>. |
|
Nov-08-19
| | Annie K.: <MissS> that's why. :) And what does the "handicap" part mean? Are these Classical or Exhibition games? |
|
Nov-09-19
| | MissScarlett: It's a system of odds-giving, akin to 'weighting' in horseracing with the aim of making a tournament more competitive, typically used in a club that has a wide-range of playing abilities. The players are allocated into separate classes, which determine the degree of odds given to the weaker side. In this event, to illustrate, Potter and Blackburne were both in class I, so they competed on even terms. Against a class II opponent, the odds would be pawn and move; against class III, pawn and two; against class IV, the Knight, and so on. A class II against a class III, would give pawn and move, etc. <Are these Classical or Exhibition games?> Classical. Games at odds would, of course, be classed as UNORTHODOX. |
|
Nov-09-19
| | Annie K.: Interesting system, thanks.
<Games at odds would, of course, be classed as UNORTHODOX.> Right. :) But I knew that possibility was out, since there were no [SetUp "1"] and FEN tags in the pgns. |
|
Nov-12-19
| | Tabanus: <Both GMs earned 11 tour points towards their goal of finishing in the top 2 overall, which will secure a berth in the 2020 Candidates Tournament.> on home page should be deleted, because the GCT doesn't qualify candidates for the Candidates. |
|
Nov-12-19
| | MissScarlett: I submitted a game <Blackburne - Down> but it hasn't appeared whilst another has - was there something amiss with it? |
|
Nov-12-19
| | Annie K.: <MissS> I don't recall it. Please resubmit it separately, and I'll go over it and see if there are any problems. |
|
Nov-13-19
 | | Stonehenge: Blackburne vs Henry F Down, 1874 Down is one of those stop words CG doesn't allow searching for. |
|
Nov-13-19
| | Annie K.: Oh, thank you <Stonehenge>. I remember asking Daniel why a <player and game search> would need stop words installed at all, but he never really answered that one. I'll see if we can do something about it now. |
|
 |
|
|
< Earlier Kibitzing · PAGE 69 OF 459 ·
Later Kibitzing> |
Kibitzing
