Page 1 of 2

PLEASE READ THIS: How to Search on this forum

PostPosted: Tue Apr 19, 2016 9:38 pm
by Tom Allen
EDIT: Since the search function is not working, you can get around this by using the search engine Duckduckgo.com.

Open your browser to https://Duckduckgo.com, and in the search box, enter the term you want to search on (in quotes), followed by the phrase: site:chastityforums.com

Examples:
"CB3000" site:chastityforums.com
"Holy Trainer Review" site:chastityforums.com
"how do I get my wife to be a keyholder" site:chastityforums.com

DDG will then show you a series of links that will all be to this board. Those links will not be redirected.

I'm not sure how it works, but DDG is a secure search engine that protects your privacy better than the big name search engines.

For more information: https://duckduckgo.com/about



================================
Spammers were able to get by the site hosting service and insert a redirect script intontheb"View..." links that affects any subsequent forum viewing.

Until we get this corrected, please do not use the "View unanswered posts" or any of the other "View..." links at the top of the forum list on the main page.

Edit: The Search function seems to be the culprit, since links to posts found while using the Search box will redirect to spam sites. The View links all work off the Search engine.

At this point, all other links seem to work just fine.

Also, the links will redirect to spam sites, but as far as I can tell, will not cause any further damage. But please don't go experimenting, just in case I've missed something.

We're working with GoDaddy, the site host, and it's unfortunately not as fast of a process as we would like to see.

Thank you for understanding.

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - April 2016

PostPosted: Sat May 07, 2016 9:56 pm
by VinnyDee
Tom - I have an email account with GoDaddy and someone got into my email account and is now spamming everyone I ever emailed using my email address as the sender. I called GoDaddy and all they did was tell me to change my password. The problem was not my password as it was a complicated one that I use for all of my servers around the country. I no longer trust GoDaddy's security. My company's web site is on XO. You really do get what you pay for.

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - April 2016

PostPosted: Sat May 14, 2016 8:10 am
by attentive_husband
You might look at bluehost for hosting. Better security and they are somewhat helpful.

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - April 2016

PostPosted: Sat May 14, 2016 10:18 am
by NewbieMC
I would look at hosting on a dedicated VPS, then taking various steps to secure it. The beauty of using a VPS is that there's plenty of flexibility around scheduling backups etc. and you get can on and fix it/restore it straight away from a backup instead of waiting for the ISP to get involved.

The issue is definitely happening server side and not on the client, ergo it's a PHP script that's been hacked rather than any java script. Well I'm assuming the back end is PHP. (I'm browsing with scripts disabled and it's still happening)

The "redirect" could be embedded in a string returned from the database - the result of a SQL injection attack, the result of a vulnerability in the forum software. I'm quite happy to help out in anyway I can. Just drop me a DM and I'll give you some contact details.

Depending on the nature of the exploit, it's possible that users email address/passwords have been dumped - so if you've used your password here anywhere else then as a precaution change it at all those other locations.

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - MAY 2016

PostPosted: Tue May 17, 2016 11:42 am
by beheld
The actual issue is server side. It's looking at the HTTPREFERER header and if is sees that the request came from the site search or more common search engines then the system redirects the user to the porn pages. If you want to use the site like normal, you can install the chrome plugin 'Referer Blocker'. Configure it to block the HTTPREFERER and everything will work fine.

If I had access to the code, It would probably be pretty easy to fix the problem, but I don't run the site. If somebody knows who I should contact, I'd be happy to try and help out. I would need ftp or ssh access to fix it.

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - MAY 2016

PostPosted: Sat Jun 04, 2016 6:09 am
by Joroincharge
This problem is a damned nuisance. Hope it's sorted soon.

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - MAY 2016

PostPosted: Thu Jun 09, 2016 3:33 pm
by attentive_husband
Is there a way you can remove all Add-Ons and have it revert to the default WordPress files?

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - MAY 2016

PostPosted: Fri Jun 10, 2016 6:53 am
by TwistedMister
attentive_husband wrote:Is there a way you can remove all Add-Ons and have it revert to the default WordPress files?


WordPress? Has nothing to do with this. PHPBB is not WordPress.

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - MAY 2016

PostPosted: Tue Jun 14, 2016 9:33 pm
by attentive_husband
TwistedMister wrote:WordPress? Has nothing to do with this. PHPBB is not WordPress.


Fresh install of PHPBB then? Keep the database but new install of the software?

Re: PLEASE READ THIS: TEMPORARY LINK ISSUES - MAY 2016

PostPosted: Wed Jun 22, 2016 1:05 pm
by gilesenglish
Link issues aren't that temporary! You must be feeling frustrated!