Admin Posted January 23, 2014 Report Posted January 23, 2014 Today, 1-23-2014, mid-morning, the forum was upgraded. Please report if you see any problems. We don't often do updates, as they sometimes cause more problems than they fix. "If it ain't fixed, don't broke it". In this case, it's been about two years and there were several bug and security patches waiting... with the recent comments about forum oddities, it was time.
Anticept Posted January 31, 2014 Report Posted January 31, 2014 I just got hit by another URL4SHORT link on my ipad, i suspect it was infested with malware (one of those "legit" looking sites but it's not quite right).
CT4ME Posted January 31, 2014 Report Posted January 31, 2014 I've seen some of those, too... Although they seem to come up when I click a search result that goes to ctflier. Some sort of search engine poisoning.
Anticept Posted January 31, 2014 Report Posted January 31, 2014 I've seen some of those, too... Although they seem to come up when I click a search result that goes to ctflier. Some sort of search engine poisoning. It's a type of malware that probably broke through a security hole in this forum and embedded itself in some scripts or the database, since the forum wasn't kept up to date. With all due respect to the admins, it's good practice to apply security patches the moment they come out, because spammers will review security patches, create crawler scripts, and turn them loose hunting for out of date forums to try and crack. As a suggestion, any versioning information should be turned off to the public (right now this board reports version 3.4.6). As posted in another thread: I'm occasionally getting redirected to various http://url4short.info pages when opening ctflier.com webpages from search engines. Having previously worked in the IT field, this immediately threw up red flags, so I tested with several devices and went into security lockdown on my systems. I have not been able to locate anything on any of my devices (but are exhibiting the same symptoms). I then went searching for vulnerabilities that may have existed recently in IP.Board that may have led to either a code or sql injection. This came up: http://peter.upfold....url4short-mess/ This also might be the source of why ctflier.com was flagged as suspicious.
Anticept Posted June 9, 2014 Report Posted June 9, 2014 The forum is still periodically redirecting people from web searches to malicious websites.
Admin Posted June 9, 2014 Author Report Posted June 9, 2014 Once in a while, but rarely, I will see Google search hits get redirected. I've reported it to the host, again. There may be some old posts, that contain the injected code. It would be nice if we could re-create the problem. I can never do it.
Ed Cesnalis Posted June 9, 2014 Report Posted June 9, 2014 Using Google Chrome, if you type ctflier, and then click CT Flier Forum, it will happen almost every time. I just tried that and got the redirect and an .exe file downloaded without requesting it.
Anticept Posted June 9, 2014 Report Posted June 9, 2014 Once in a while, but rarely, I will see Google search hits get redirected. I've reported it to the host, again. There may be some old posts, that contain the injected code. It would be nice if we could re-create the problem. I can never do it. The type of problem is addressed here: http://peter.upfold.org.uk/blog/2013/01/15/cleaning-up-the-ip-board-url4short-mess/ It's not easily replicated because it's a type of malware that doesn't want to be found. By making it happen randomly, it makes it much harder to replicate the process and hunt down. Use a browser on a computer that you don't log in on your admin account with on a system with a different IP, search for "ctflier.com" on google, and click a topic link. You might have to do it for a few tries, but it should occur.
Admin Posted June 9, 2014 Author Report Posted June 9, 2014 They ran a cleansing routine and said no signs of a hack exist (any more). We'll see. Apparently, the only way it can get in is through a compromised admin password.... so those are being changed.
Anticept Posted June 9, 2014 Report Posted June 9, 2014 Just type 'ctflier' into the address box, it will bring up the site readily, under Firefox. It's still bad practice to let malware go.
Anticept Posted July 29, 2014 Report Posted July 29, 2014 We don't have a website forum, so I am posting this here.It looks like we just got hit by a database rollback. My guess is the problems that have been seen in the last 24 hours has resulted in the need of restoring a backup that is 2 days old. I lost my nice post about air density EDIT: Admin, when you edit my posts like below, it's always polite to say "Edit by admin" There is an area under "Forum news and info" titled "current known issues"... Yes, because of a hardware failure and replacement, some posts from the 28th were lost. Feel free to post them again.
WmInce Posted July 29, 2014 Report Posted July 29, 2014 Darn! I knew I should have made a copy of that. That was an excellent post.
Doug G. Posted July 30, 2014 Report Posted July 30, 2014 Reposting is not easy. You can't command wit and most of the time I only manage about half.
Admin Posted December 30, 2014 Author Report Posted December 30, 2014 The forum was upgraded today... minor update with some security and aesthetic fixes. I saw no changes with postings or loss of any data...
Anticept Posted December 30, 2014 Report Posted December 30, 2014 The forum was upgraded today... minor update with some security and aesthetic fixes. I saw no changes with postings or loss of any data... Just be sure to do a database backup before you do upgrades, and if something doesn't look right, you can revert
Anticept Posted December 31, 2014 Report Posted December 31, 2014 I'm sure they know that and do that. We've all got each other's backs here! Might be a little bit of a "look over your shoulder" kind of way, but it's all in good intention
FastEddieB Posted December 31, 2014 Report Posted December 31, 2014 I'm sure they know that and do that.You'd think so. But I'm on another forum that just managed to lose a couple years of posts somehow. It happens.
Admin Posted December 31, 2014 Author Report Posted December 31, 2014 The old ctflYer forum lost info, twice. It sucked, as a lot of good stuff was lost forever. Our hosts backup our data once a day, and there is a manual procedure available. They won't even do an upgrade unless the requester indicates in a written message that a backup is in place.
Runtoeat Posted January 1, 2015 Report Posted January 1, 2015 Is there any recommendations for a good free AV program for Android tablets? Comodo?
CT4ME Posted January 1, 2015 Report Posted January 1, 2015 AVG, Avira, McAfee, Norton, Bit Defender, and Kaspersky all have great ratings and free versions.
Recommended Posts
Archived
This topic is now archived and is closed to further replies.