User Controls
Lanny
-
2016-10-26 at 12:17 AM UTCLanny does not scare me in the least. Don't let him scare you either.
-
2016-10-26 at 12:28 AM UTCI am just coming to this thread to say one thing.
-
2016-10-26 at 1:20 AM UTC
-
2016-10-28 at 12:25 AM UTC
I was referring mote to the Tech section. That particular thread stands out. Tons of views.
I'm also wondering why you are trying to downplay all of this. I think I made some really good points. You're acting as if this is just the usual, but those of us who have frequented this community for years, know that this isn't typical. Not on this scale.
Even since the shutdown of Zoklet, it appears as if something is off. All I can think of is federal intervention. Taking over the forum(what's the need for javascript? I know at least one person has asked about this) and allowing illegal conversations and illegal vendors to spam(why would any admin that isn't FBI put themselves at risk like this?).
Things seem strange and I am constantly told(maybe by those who prefer to stay anonymous...) to ster clear.
Why is that javascript needed Lanny?
Of all the people, you should be able to quickly remove it, and I'm sure you know of the security risks. -
2016-10-28 at 1:43 AM UTC
I was referring mote to the Tech section. That particular thread stands out. Tons of views.
I'm also wondering why you are trying to downplay all of this. I think I made some really good points. You're acting as if this is just the usual, but those of us who have frequented this community for years, know that this isn't typical. Not on this scale.
Even since the shutdown of Zoklet, it appears as if something is off. All I can think of is federal intervention. Taking over the forum(what's the need for javascript? I know at least one person has asked about this) and allowing illegal conversations and illegal vendors to spam(why would any admin that isn't FBI put themselves at risk like this?).
Things seem strange and I am constantly told(maybe by those who prefer to stay anonymous…) to ster clear.
Why is that javascript needed Lanny?
Of all the people, you should be able to quickly remove it, and I'm sure you know of the security risks.
JS is optional with the new forum software. -
2016-10-28 at 2:03 AM UTC
Why is that javascript needed Lanny?
It's part of vB. A lot of stuff you do on the forum is done by ajax. It doesn't strictly need to be, in the sense that it's perfectly possible to make a forum work without it, but vB5 made the design decision to go with it. There are some benefits there, like anything it's a tradeoff, if you think about functionality like thanks, there's no good way to make that interoperate with the quick reply form without JS. If they're independent forms then thanking something empties the reply field, if they're combined you have to boomerang every piece of state on the page back after redirect (costing you a minimum of two requests, assuming ideal cache performance), and the complexity of that code blows, and and it's throwing the dream of semantic markup out the window.Of all the people, you should be able to quickly remove it, and I'm sure you know of the security risks.
Not from vB, it isn't setup to work like that, to the core it assumes a whole bunch of user actions are done by ajax and that there's some logic on the client side.
As for the security risks, it's worth talking about but on the whole modern browser environments ala Chrome or FF are pretty secure. Fundamentally it's a larger attack surface, but it's one of the most battle tested sandboxing environments in the world today. When we're talking about like tor then the additional data yielded is relatively limited, timezone and some browser stats like screen size, generally considered non-identifying. People like to spread FUD about javascript and tor and to be sure it is an increased risk to enable it but it's a risk to turn your computer on. There is no currently known attack against correctly configured, up to date browsers through TOR that hinges on JS being enabled -
2016-10-28 at 3:19 AM UTCSomeone with write permissions to the server is attempting to serve invisible IFrames, as this site loads, which lead to suspicious-looking short urls. I haven't been assed to explore any further, but I would hazard a guess that it's psycho, so make sure and use a firewall with executable application detection. Also, monitor your ports for unusual activity.
-
2016-10-28 at 3:50 AM UTClol, spectral, you don't know what those words mean.
-
2016-10-28 at 6:19 AM UTC
lol, spectral, you don't know what those words mean.
I like to use the Sploo analogy when talking about Spectral, his words sound impressive to the uninitiated but at the end of the day they hold no real value. -
2016-10-28 at 6:37 AM UTC
Also, monitor your ports for unusual activity.
Oh I keep alert for any unusual activity in, near or around my port ;) -
2016-10-28 at 1:10 PM UTC
lol, spectral, you don't know what those words mean.
Oh, you. -
2016-10-28 at 1:12 PM UTCQuestion for speckles: do you hate lanny, just like how you hated zok, arnox, etc?
-
2016-10-28 at 1:23 PM UTC
Question for speckles: do you hate lanny, just like how you hated zok, arnox, etc?
No, I don't hate Lanny. But I am quite disappointed in his past behaviors. Let's see how he finally pans out, before we rush to any hasty conclusions. -
2016-10-28 at 1:23 PM UTC
Someone with write permissions to the server is attempting to serve invisible IFrames, as this site loads, which lead to suspicious-looking short urls. I haven't been assed to explore any further, but I would hazard a guess that it's psycho, so make sure and use a firewall with executable application detection. Also, monitor your ports for unusual activity.
My port seems to be fine aye aye