Website needs a few tweeks

[RobotN1XON]

First of all, the password field in login should be changed to type "password" so it doesn't display it in plain text.

Secondly, if the passwords have been leaked, that's probably because you were storing them on the server in plaintext. in the PHP code, run the sha1() function, then store the hash in the database under "password". Then, when someone logs in, run the function again on the password they're attempting to log in with, and compare the sha1 hashes. that way if anyone gets into the database, all they'll see is the encrypted string of the password, and no more password leaks.

Thirdly, might be worth adding some Ajax into the character page. Gets kinda tiring having to constantly reload the page every time you change an attribute or want to view items in the shop.

[Meow]

and you think the devs are not aware of such features as the "password" type or how to manage a database i mean you could have just writen please update the character page, no need to throw all the smart stuff in.

then again i agree with the part that the page could need some updating and the security overall is hurting my brain but i totally think it's for chadz amusement so i will accept it as lowest priority

[Tristan]

Go download Heraldix eye-candy and hp is fine...

Got no clue about the security thing you talk about, but I guess there is a reason it ain't implemented.

[RobotN1XON]

and you think the devs are not aware of such features as the "password" type or how to manage a database i mean you could have just writen please update the character page, no need to throw all the smart stuff in.

Why don't they use it then?

Got no clue about the security thing you talk about, but I guess there is a reason it ain't implemented.

And you sir sound very well informed. Password leaks don't happen when you have an encrypted database.