Page 3 of 3 FirstFirst 1 2 3
Results 51 to 65 of 65

Thread: Spam redirect

  1. #51
    Join Date
    Sep 2006
    Location
    North Van
    Posts
    3,511
    Quote Originally Posted by Thaleia View Post
    Wish this was being taken more seriously.
    Same. How is this still going on?

  2. #52
    Join Date
    Jan 2016
    Posts
    1,249
    Now it's happening on my Android cell as well.

    Mods - clearly your site has been compromised. Not only that, it is affecting individual users devices.

    That's like, kind of a big deal, no?

  3. #53
    Join Date
    Sep 2007
    Location
    tetons
    Posts
    7,544

    Spam redirect

    I agree and I think itís a big dealÖÖapparently tgr not so much.
    Wish there was more we could do as mods. itís a pretty frustrating situation.
    skid luxury

  4. #54
    Join Date
    Jan 2009
    Posts
    817
    Seems to redirect more so when it detects a new ip address

  5. #55
    Join Date
    Sep 2005
    Location
    PRB
    Posts
    26,098
    This has never happened to me on the app. So y'all should use the app, you know, the one that's no longer available on the Play store because??
    "fuck off you asshat gaper shit for brains fucktard wanker." - Jesus Christ
    "She was tossing her bean salad with the vigor of a Drunken Pop princess so I walked out of the corner and said.... "need a hand?"" - Odin
    "I'd eat a bag of Dicks and wash it down with a Coke any day." - iceman

  6. #56
    Join Date
    Apr 2021
    Posts
    400
    Quote Originally Posted by babybear View Post
    I agree and I think it’s a big deal……apparently tgr not so much.
    Wish there was more we could do as mods. it’s a pretty frustrating situation.
    guessing we are near the end of the tgr forums then?

  7. #57
    Join Date
    Oct 2005
    Location
    Tahoe-ish
    Posts
    1,522
    Quote Originally Posted by Danno View Post
    This has never happened to me on the app. So y'all should use the app, you know, the one that's no longer available on the Play store because??
    The old app has been working well for me on Android phone and tablet. I've also not noticed any issues on Firefox for Linux on the PC.
    ride bikes, climb, ski, travel, cook, work to fund former, repeat.

  8. #58
    Join Date
    May 2016
    Posts
    2,625
    Quote Originally Posted by muted reborn View Post
    guessing we are near the end of the tgr forums then?
    As important as we all think we are,I can see how the TGR big-wigs might have a hard time justifying spending much time or money on the forums.

    In addition to the dentists, doctors, and lawyers, we seem to have a fair number of internet experts hanging out here (not counting myself in any of those categories). Maybe we need to step up and fix it ourselves?

    Maybe as a start, can someone who knows describe the mechanics of what is going on, and what needs to be done to fix or prevent it? Iíve read somewhere that it might be a JavaScript exploit - does that sound right? I tried disabling JavaScript, but then a lot of other stuff stopped working, so I turned it back on.

  9. #59
    Join Date
    Jun 2009
    Location
    Matchbox 20
    Posts
    2,317
    There is an error in the page somewhere. When cookies are disabled the iptrack site redirect happens. It should be fetching the IP for site configuration (regional differences) silently when cookies are disabled.

    Test it. Go open the page in an incognito window. The site redirects. Now paste the address again. The site doesn't redirect. Stay in incognito and clear the tgr cookies. The site redirects again. Doesn't look malicious so much as an error in the coding causing it to not operate properly.

    Google Chrome Lighthouse report also says it has a very old version of jquery running with lots of cross-site scripting (xss) vulnerabilties. That should be upgraded to the latest jquery.
    OH, MY GAWD! ―John Hillerman  Big Billie Eilish fan.
    But that's a quibble to what PG posted (at first, anyway, I haven't read his latest book) ―jono
    we are not arguing about ski boots or fashionable clothing or spageheti O's which mean nothing in the grand scheme ― XXX-er

  10. #60
    Join Date
    Sep 2005
    Location
    PRB
    Posts
    26,098
    Quote Originally Posted by climberevan View Post
    The old app has been working well for me on Android phone and tablet. I've also not noticed any issues on Firefox for Linux on the PC.
    Yeah, the app works fine for me. But apparently it's not available.
    "fuck off you asshat gaper shit for brains fucktard wanker." - Jesus Christ
    "She was tossing her bean salad with the vigor of a Drunken Pop princess so I walked out of the corner and said.... "need a hand?"" - Odin
    "I'd eat a bag of Dicks and wash it down with a Coke any day." - iceman

  11. #61
    Join Date
    Oct 2005
    Location
    Tahoe-ish
    Posts
    1,522
    Quote Originally Posted by Danno View Post
    Yeah, the app works fine for me. But apparently it's not available.
    It's readily available.

    https://apkfun.com/TGR-Forums.html
    ride bikes, climb, ski, travel, cook, work to fund former, repeat.

  12. #62
    Join Date
    May 2016
    Posts
    2,625
    Quote Originally Posted by pureantigravity View Post
    There is an error in the page somewhere. When cookies are disabled the iptrack site redirect happens. It should be fetching the IP for site configuration (regional differences) silently when cookies are disabled.

    Test it. Go open the page in an incognito window. The site redirects. Now paste the address again. The site doesn't redirect. Stay in incognito and clear the tgr cookies. The site redirects again. Doesn't look malicious so much as an error in the coding causing it to not operate properly.

    Google Chrome Lighthouse report also says it has a very old version of jquery running with lots of cross-site scripting (xss) vulnerabilties. That should be upgraded to the latest jquery.
    Thanks for the info. Gives me more experiments to try whenever I get some free time.

  13. #63
    Join Date
    Sep 2005
    Location
    PRB
    Posts
    26,098
    Quote Originally Posted by climberevan View Post
    It's readily available.

    https://apkfun.com/TGR-Forums.html
    cool. just bumped the thread that said it was gone.
    "fuck off you asshat gaper shit for brains fucktard wanker." - Jesus Christ
    "She was tossing her bean salad with the vigor of a Drunken Pop princess so I walked out of the corner and said.... "need a hand?"" - Odin
    "I'd eat a bag of Dicks and wash it down with a Coke any day." - iceman

  14. #64
    Join Date
    Apr 2018
    Posts
    39
    Quote Originally Posted by pureantigravity View Post
    Google Chrome Lighthouse report also says it has a very old version of jquery running with lots of cross-site scripting (xss) vulnerabilties.
    Heh...I saw that too. Looks like if only affects sites under pretty specific criteria. Even though TGR has a jQuery version with that xss vulnerability, they might not be impacted. Or they might be. Hard to tell without going through the code. Regardless, this issue is still pretty fucking big, and it makes me question if there's something more malicious we're not seeing. Also, the lack of response from TGR is astonishing.

  15. #65
    Join Date
    Aug 2009
    Location
    Lost in Time
    Posts
    324
    Fucking annoying

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •