Bitcoin Forum
December 10, 2016, 10:51:43 PM *
News: To be able to use the next phase of the beta forum software, please ensure that your email address is correct/functional.
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: Chrome malware warning  (Read 1662 times)
conspirosphere.tk
Legendary
*
Offline Offline

Activity: 1876


Revolution will be decentralized


View Profile WWW
April 28, 2012, 05:06:09 PM
 #1

Wonder why today I am getting this while browsing the forum?

1481410303
Hero Member
*
Offline Offline

Posts: 1481410303

View Profile Personal Message (Offline)

Ignore
1481410303
Reply with quote  #2

1481410303
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481410303
Hero Member
*
Offline Offline

Posts: 1481410303

View Profile Personal Message (Offline)

Ignore
1481410303
Reply with quote  #2

1481410303
Report to moderator
terrytibbs
Hero Member
*****
Offline Offline

Activity: 560



View Profile
April 28, 2012, 07:55:59 PM
 #2

It's ineededausername's avatar. It looks like the site has been compromised or something.

Quote
<td valign="top" width="16%" rowspan="2" style="overflow: hidden;" class="poster_info">
   <b><a href="https://bitcointalk.org/index.php?action=profile;u=40007" title="View the profile of ineededausername">ineededausername</a></b>
   <div class="smalltext">
      [...]
      <div style="overflow: auto; width: 100%;"><img src="http://www.mstrum.com/onmywaytokorea/wp-content/uploads/2009/07/north-korean-propaganda-other-7.jpg" width="120" height="80" alt="" class="avatar" border="0"></div><br>
      Defender of the motherland... I mean Bitcoin
      [...]
   </div>
</td>

On a related note, Jesus Christ this forum needs new software.
BadBear
v2.0
Administrator
Legendary
*
Offline Offline

Activity: 1652



View Profile WWW
April 28, 2012, 08:55:03 PM
 #3

It might be best to require all avatars to be locally hosted on the forums, it would stop this and the people who have 1.3 MB avatars (same guy i think). 

1Kz25jm6pjNTaz8bFezEYUeBYfEtpjuKRG | PGP: B5797C4F

Tired of annoying signature ads? Ad block for signatures
theymos
Administrator
Legendary
*
Offline Offline

Activity: 2506


View Profile
April 29, 2012, 01:52:21 AM
 #4

I changed it so avatars given as URLs are downloaded, resized, and hosted by the forum. This will only apply to future avatars.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
rjk
Sr. Member
****
Offline Offline

Activity: 420


1ngldh


View Profile
April 29, 2012, 01:56:27 AM
 #5

I changed it so avatars given as URLs are downloaded, resized, and hosted by the forum. This will only apply to future avatars.
I like this, although I suspect that the people using dynamic avatars from Bitminter et al won't. I wonder if it is possible to "whitelist" those. Also, I doubt the resizer will handle gifs, will it? Not that I care lol.

Mining Rig Extraordinaire - the Trenton BPX6806 18-slot PCIe backplane [PICS] Dead project is dead, all hail the coming of the mighty ASIC!
theymos
Administrator
Legendary
*
Offline Offline

Activity: 2506


View Profile
April 29, 2012, 02:02:18 AM
 #6

I like this, although I suspect that the people using dynamic avatars from Bitminter et al won't. I wonder if it is possible to "whitelist" those. Also, I doubt the resizer will handle gifs, will it? Not that I care lol.

I'll see how many people complain. Those dynamic images seem unnecessary, though I guess whitelisting could be done if absolutely necessary.

Animated GIFs do not retain their animation when resized. I think you can still upload them if they're already correctly-sized.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
Remember remember the 5th of November
Legendary
*
Offline Offline

Activity: 1526

Reverse engineer from time to time


View Profile
April 30, 2012, 07:04:52 AM
 #7

And another good deed done.

BTC:1AiCRMxgf1ptVQwx6hDuKMu4f7F27QmJC2
Red Emerald
Hero Member
*****
Offline Offline

Activity: 742



View Profile WWW
April 30, 2012, 09:43:07 PM
 #8

One more thing to make sure my forum handles properly.

ineededausername
Hero Member
*****
Offline Offline

Activity: 784


bitcoin hundred-aire


View Profile
April 30, 2012, 11:18:17 PM
 #9

derp, I'll go change it

(BFL)^2 < 0
theymos
Administrator
Legendary
*
Offline Offline

Activity: 2506


View Profile
April 30, 2012, 11:20:31 PM
 #10

derp, I'll go change it

I already fixed it for you by uploading it to bitcointalk.org.

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
Remember remember the 5th of November
Legendary
*
Offline Offline

Activity: 1526

Reverse engineer from time to time


View Profile
May 01, 2012, 04:12:03 AM
 #11

derp, I'll go change it

I already fixed it for you by uploading it to bitcointalk.org.
But what if the image was infected.

BTC:1AiCRMxgf1ptVQwx6hDuKMu4f7F27QmJC2
rjk
Sr. Member
****
Offline Offline

Activity: 420


1ngldh


View Profile
May 01, 2012, 01:47:55 PM
 #12

derp, I'll go change it

I already fixed it for you by uploading it to bitcointalk.org.
But what if the image was infected.
Oh noes, virisses be infectin mah jaypegs.

Mining Rig Extraordinaire - the Trenton BPX6806 18-slot PCIe backplane [PICS] Dead project is dead, all hail the coming of the mighty ASIC!
Red Emerald
Hero Member
*****
Offline Offline

Activity: 742



View Profile WWW
May 01, 2012, 07:28:38 PM
 #13

derp, I'll go change it

I already fixed it for you by uploading it to bitcointalk.org.
But what if the image was infected.
Oh noes, virisses be infectin mah jaypegs.
I know there has been arbitrary code executed by PNGs.  That's how one of the iphone jailbreaks worked (after the TIF and then PDF exploits that worked similarly IIRC).

I'm pretty sure resizing the image would kill any malicious behavior (if any at all).

mcorlett
Donator
Sr. Member
*
Offline Offline

Activity: 308



View Profile
May 12, 2012, 07:49:35 PM
 #14

I changed it so avatars given as URLs are downloaded, resized, and hosted by the forum. This will only apply to future avatars.
What are the specific constraints (in pixels, please)?

theymos
Administrator
Legendary
*
Offline Offline

Activity: 2506


View Profile
May 12, 2012, 07:54:14 PM
 #15

What are the specific constraints (in pixels, please)?

120px × 80px

1NXYoJ5xU91Jp83XfVMHwwTUyZFK64BoAD
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!