- Joined
- Mar 18, 2003
- Messages
- 17,746
- Reaction score
- 6
Chris_D:
I've been approached by quite a lot of people who are being taken to a blank page whenever they try to post in a thread, post a new thread or PM someone.
The reason you are now seeing these problems is due to the recent spoiler attacks we've been having. As you know from previous announcments a website script was using the information stored in your cookies to access the vBulletin pages that add posts, threads and PMs to the database containing a spoiler.
To stop this we installed something on the forums that would check to make sure the post is actually originating from halflife2.net. Essentially making sure the "referrer" is halflife2.net.
The problem some of you are having is likely to be due to your firewall software.
You need to make sure the firewall isn't blocking referrer information being sent from halflife2.net or you will not be able to post.
I was helping a forum member out with his firewall last night. He was using Norton Internet Security and I very quickly and easily found the instructions to allow referrers on his software by searching for the following in Google, including the "quotation marks":
"Norton Internet Security" +referrer
Searching for that string will bring up this page.
If you use another piece of firewall software, then look through your settings or search for a way to do it using Google.
We do apologise for having to take some drastic measures and making some of you go through this to be able to post, but unfortunately, it is necessary to ensure the malicious attacks stop.
If the information above doesn't help you to solve the problem, please feel free to e-mail me on [email protected]
Thanks for your understanding in this matter
Chris Deeming
HalfLife2.net Staff
StarMonkey:
This follows on from Chris_D's announcement.
I've had a look at the javascript code which posts these spoiler threads, and written a quick modification to our forums which should stop them completely.
The code was written to post threads to a few forum types, and the way it did it was really something which the forum coders should've coded against, as it is a bit of a security issue.
It's worth noting that , this exploit used your forum cookies to post new threads, but no one gained access to your passwords or forum account - so there's no need to worry about people having your details.
If anyone see's any modified versions of this exploit about then please email them to me and I'll make an effort to make sure our forum isn't vulnerable to them.
Also if anyone else has been having problems with this exploit then email me, and I'll explain how to fix the exploit in your forum software.
Thanks
StarMonkey
[email protected]
I've been approached by quite a lot of people who are being taken to a blank page whenever they try to post in a thread, post a new thread or PM someone.
The reason you are now seeing these problems is due to the recent spoiler attacks we've been having. As you know from previous announcments a website script was using the information stored in your cookies to access the vBulletin pages that add posts, threads and PMs to the database containing a spoiler.
To stop this we installed something on the forums that would check to make sure the post is actually originating from halflife2.net. Essentially making sure the "referrer" is halflife2.net.
The problem some of you are having is likely to be due to your firewall software.
You need to make sure the firewall isn't blocking referrer information being sent from halflife2.net or you will not be able to post.
I was helping a forum member out with his firewall last night. He was using Norton Internet Security and I very quickly and easily found the instructions to allow referrers on his software by searching for the following in Google, including the "quotation marks":
"Norton Internet Security" +referrer
Searching for that string will bring up this page.
If you use another piece of firewall software, then look through your settings or search for a way to do it using Google.
We do apologise for having to take some drastic measures and making some of you go through this to be able to post, but unfortunately, it is necessary to ensure the malicious attacks stop.
If the information above doesn't help you to solve the problem, please feel free to e-mail me on [email protected]
Thanks for your understanding in this matter
Chris Deeming
HalfLife2.net Staff
StarMonkey:
This follows on from Chris_D's announcement.
I've had a look at the javascript code which posts these spoiler threads, and written a quick modification to our forums which should stop them completely.
The code was written to post threads to a few forum types, and the way it did it was really something which the forum coders should've coded against, as it is a bit of a security issue.
It's worth noting that , this exploit used your forum cookies to post new threads, but no one gained access to your passwords or forum account - so there's no need to worry about people having your details.
If anyone see's any modified versions of this exploit about then please email them to me and I'll make an effort to make sure our forum isn't vulnerable to them.
Also if anyone else has been having problems with this exploit then email me, and I'll explain how to fix the exploit in your forum software.
Thanks
StarMonkey
[email protected]
