Forums

RS-Linkify Thread is sticky

Quick find code: 261-262-33-65181208

Indecent Act

Indecent Act

Posts: 7,456 Rune Posts by user Forum Profile RuneMetrics Profile
Ryan M said :
Hopefully the issue is fixed soon. Too easy to direct people to sites with that issue at hand. :|


Yep, but you don't even need to do that. I can't see why anyone couldn't inject an external script and phish users without them leaving the forums. Of course I haven't looked into that but off the top of my head I can't see why that couldn't be done.

There is also the fact the 2k character limit (although effectively eaten up quickly by url encoding) is enough to do some nasty stuff. Could make it post and self propagate. Even bring the forums down in no time as well as do other nasty stuff.

Pretty sure they'll take it seriously as it's too easy to exploit with the link tag. I guess we're lucky Blasty is nice guy :)

29-Oct-2015 09:20:09 - Last edited on 29-Oct-2015 10:27:02 by Indecent Act

Ryan M
May Member 2008

Ryan M

Posts: 3,095 Adamant Posts by user Forum Profile RuneMetrics Profile
Kinda reminds me of the QFC / quote bug that did a similar thing last year (or the year before). I mean, it would be nice to be able to at least link to RSChronicle: Test .

I'm just hoping that it is just removing the callback function of the RSS feed. It would hurt any real links that currently require callbacks to be used like this player data .

29-Oct-2015 09:29:01 - Last edited on 29-Oct-2015 09:31:31 by Ryan M

Indecent Act

Indecent Act

Posts: 7,456 Rune Posts by user Forum Profile RuneMetrics Profile
I like to think the player data is pretty safe as the callback is used by a number of pages. I could be mistaken but I don't think the alog pages pull data from the feed (would be convoluted if it did).

Tbh I don't know anymore, it's been so long since I've looked at the alog and it's changed lots since I last poked around.

Blasty wondered why there is even a callback on the feed, and I can't think of a reason. Also Blasty pointed out that this isn't typical of other site's feeds, the little I know about RSS supports that too.

I hope it's trivial to remove, but then again code is akin to a house of cards, it doesn't take much for it all to fall apart.

29-Oct-2015 09:46:17 - Last edited on 29-Oct-2015 09:47:05 by Indecent Act

Amaethwr
Aug Member 2008

Amaethwr

Posts: 14,634 Opal Posts by user Forum Profile RuneMetrics Profile
Lust said :
If I learnt anything from a certain link in the past it was to not click Blasty links! :D
"Lol"


Hevilmystic said :
Why is there no RSLinkify glassware range?
Support for Linkify products


Indecent Act said :
I guess we're lucky Blasty is nice guy :)
Or is he..... :O


Indecent Act said :
I Q 9: There will be only one.
Hmm....

*drops off ­coffee*
Selective Completionist

29-Oct-2015 15:43:57 - Last edited on 29-Oct-2015 15:44:40 by Amaethwr

Indecent Act

Indecent Act

Posts: 7,456 Rune Posts by user Forum Profile RuneMetrics Profile
Hiya Amaethwr, Ty for the coffee :)

Been a couple of updates today to address what Blasty discovered. I haven't checked to see how opera is going but the latest Linkify version is 3.1.8.90. Only published a short time ago.

It has improved link checking, the version I published before this one did take care of the issue but I have improved on it since then.

Just letting you know in case you want to update manually :)

29-Oct-2015 16:13:06 - Last edited on 29-Oct-2015 16:13:35 by Indecent Act

Indecent Act

Indecent Act

Posts: 7,456 Rune Posts by user Forum Profile RuneMetrics Profile
Oh cool, good that the updates are issue free on Opera :)

It seems to work well on opera. I have made only one minor change to ensure things run as they should on both browsers.

There are some differences aside from the obvious speed dial. Opera has a few less browser APIs, but that hasn't mattered as the ones I use are supported by both browsers.

Opera has strict restrictions as to what you can and cant do within an extension, and also with code conventions, as does chrome. So no difference there.

I really couldn't have asked for it be any easier.

29-Oct-2015 22:06:24

StoutStarmie

StoutStarmie

Posts: 2,515 Adamant Posts by user Forum Profile RuneMetrics Profile
Hey Indy, sorry I don't have any coffee but I do have some questions. Not quite the same, I know, but :p

I saw in some thread you mentioned that you can blacklist people from seeing the IQ9 easter eggs, was wondering if I've been blacklisted because every time there's been an "event" after the first one it just loaded a blank thread background with nothing in it. Kinda thankful if so as I half pay attention to forums so when something like it pops up it tends to scare the heck out of me because I forget about it :p If not, that's alright and please don't add me, I'm just curious why it isn't showing for me.

Secondly, I know about typing IQ9 in the search bar while viewing a thread to see the latest video, but is there any way to see the ones before that? So far I've only seen the first 2 seconds of the first one and this latest one from tonight and want to see the ones between. Sorry for the essay and stay awesome :3
It's not the end that I fear with each breath, it's life that scares me to death

30-Oct-2015 00:51:00

Indecent Act

Indecent Act

Posts: 7,456 Rune Posts by user Forum Profile RuneMetrics Profile
Update 3.1.8.92 fix.

My apologies to anyone that's having difficulty. Updating your extensions will sort it.


------------------------------------------------------------------------------------------



@Embed

Yep I will make a way to view all the vids and you will get a surprise vid sometime today :)

30-Oct-2015 00:56:25 - Last edited on 30-Oct-2015 01:08:08 by Indecent Act

Quick find code: 261-262-33-65181208 Back to Top