Nah.I just had that stupid message pop up again when I posted something. Hope this doesn't mean another 17+ hours of downtime.
Nah.I just had that stupid message pop up again when I posted something. Hope this doesn't mean another 17+ hours of downtime.
That's what it was, just someone with a ready made script who scanned one of our servers and found an exploit that allowed them to upload it.I'm dealing with my own script kiddy issues lol... jerks got no life.
Heh, nothing is working properly. Working on getting everything back up.I don't think the Twitter hub on the front page is working properly, John. Thanks for all your hard work!
The fact that a "ready made" script made it through your security (MULTIPLE TIMES) is a little troublesome.That's what it was, just someone with a ready made script who scanned one of our servers and found an exploit that allowed them to upload it.
We should be good now.
Edit: Trader feedback is back online.
Anyone?Is it required to change your password? I mean I got to change it but it was the same one. Does this generate a new "Salt"?
Up to you, really. A new salt is generated even if you change it to the same password.Anyone?
Agreed. Although it didn't make it through multiple times, it was just well hidden. Not being able to find it is what made it possible for the attacker to keep on making changes despite our efforts.The fact that a "ready made" script made it through your security (MULTIPLE TIMES) is a little troublesome.
From the sounds of the script kiddy's twitter on January 10th, they claimed that they figured it out on their own but eh never know. The bitcoin image itself links to a site called newsbtc.com which has a sketchy rep from a simple google search, but who knows. When the skids hide the files that let themselves in, it really makes it hard to a point you just have to start fresh and rebuild. I'm not looking forward to having to do this myself...The fact that a "ready made" script made it through your security (MULTIPLE TIMES) is a little troublesome.
Glad I wasn't the only one. Happy to see the site is back online. Password changed, no worries over hereFinally back.
Despite knowing it was hacked, I kept clicking on my bookmark out of habit.
Working on itAlmost every time I click on a forum or topic link, it takes 3-5 tries to actually open properly. Everything keeps redirecting me to the main page upon the first few attempts. I also have to log in every time despite checking the box to keep me logged in.
Same here. Although the sign in issue seems to be worse on mobile.Almost every time I click on a forum or topic link, it takes 3-5 tries to actually open properly. Everything keeps redirecting me to the main page upon the first few attempts. I also have to log in every time despite checking the box to keep me logged in.
And here as well. I know you're working on it but here's a little more info from what I've found after about 30 minutes of navigating trial and error:Same here. Although the sign in issue seems to be worse on mobile.
Thanks for all the hard work!Random thread redirects to the home page should be fixed.
Also:
- Fixed the double post issue
- Fixed the WYSIWYG editor colours
Windows 7, Firefox 43.0.4.Random thread redirects to the home page should be fixed.
Also:
- Fixed the double post issue
- Fixed the WYSIWYG editor colours
Most likely a caching issue. Clear your cache and try again?Windows 7, Firefox 43.0.4.
WYSIWYG editor is still gray/white on Firefox. Checked Chrome and it looks to be fixed there.
I think I tried private browsing twice before clearing the cache. First time (before reporting) it didn't work, second time (after seeing your message) it did. Or maybe I remember wrong. Cleared anyway and working! Thanks!Most likely a caching issue. Clear your cache and try again?
Also, front page tweets/deals are fixed.
The tweets that appear are based on the list belonging to @videogamedeals, which I don't control - but I wouldn't want to subject anyone to my drunken stream tweets.Any chance we can get you added to the "CAG on Twitter" list, and therefore the front page tweets? And maybe @CAGNewDeals, if it isn't redundant or considered overly active that it would push out all other tweets?
Delete cookies related to the site and try again. It should fix your issue.Don't know if it's being handled, but user sessions seem to be expiring after a period of time/inactivity.
"Remember Me" checkbox isn't doing anything against it.
Thank you!Random thread redirects to the home page should be fixed.
Also:
- Fixed the double post issue
- Fixed the WYSIWYG editor colours
Don't go flinging accusations like that. It doesn't help anyone.The hacker was probably that Twitter/TheBroKitten guy because he was mad about being banned 3 times.
Still working on collections/product searching.When trying to add a game to playing/beat/collection it gives an error. Thanks John
Error: Unable to connect to tcp://10.30.200.20:9200. Error: Connection refused
Clear cookies. Seems to have fixed the issue...Still getting logged out every time I look at a different tab and then come back using the mobile version of CAG.
Thanks, but that didn't fix anything for me. I just had to log in again.Clear cookies. Seems to have fixed the issue...
What browser?Thanks, but that didn't fix anything for me. I just had to log in again.
Still getting logged out every time I look at a different tab and then come back using the mobile version of CAG.
I'm liking the new beta v4 price tracker, much more easier to use, and the filtering works.Still working on the price tracker, but prices should be populating again.
Me too. Every day since the hack. I’m using Safari on Mac. Worked before.Thanks, but that didn't fix anything for me. I just had to log in again.
How long does it last before you get logged out?Me too. Every day since the hack. I’m using Safari on Mac. Worked before.