View Full Version : Security warning when signing in to VK


radiodayz
09-02-2017, 04:14 AM
Not sure where this belongs, so I'll just post it here:

The last couple of times when I've signed in to the site, I get a security warning, something like: "This site is not secure, your personal information may be vulnerable." Cause for concern?

RD

Findm-Keepm
09-02-2017, 06:06 AM
Make sure you are not trying to access it via https://

I have to "bookmark" the plain-jane "www.vidoekarma.org"

Firefox, since version 50 or so, has defaulted to https:// and TLS for all websites. There is probably a setting somewhere to disable that, but for security, I just go with the https:// for all sites. Keeps the script worms away. If a site has no SSL certificate, it will throw the "this site is not secure" (true dat....), but for videokarma and ARF, safe enough for me, but I have to use NoScript and UBlock Origin to keep the page load times down - the scripts (read:Google Ads) add several Megabytes of load time. http://www.videokarma.org/showthread.php?t=269388

Chrome and Edge do likewise - they default to https - HTTP Strict Transport Security (HSTS) is the term. https://www.owasp.org/index.php/HTTP_Strict_Transport_Security_Cheat_Sheet

I remembered an internal IT document explaining it, probably to keep down on the IT guy having to visit every desktop when there was a problem.

If you are accessing from a mobile device, Tapatalk may work better fo you . YMMV.

Boobtubeman
09-02-2017, 05:14 PM
Im getting the same at a few sites myself....

Theres this annoying ford labor day commercial thats popping up in the banners here and likes to pull you away from something you are reading and MAKES you watch the banner complete with audio..

Findm-Keepm
09-02-2017, 08:40 PM
Im getting the same at a few sites myself....

Theres this annoying ford labor day commercial thats popping up in the banners here and likes to pull you away from something you are reading and MAKES you watch the banner complete with audio..

Script redirect/hijack - use a script blocker - it'll let through the VK hosted script, but block any that come from other sites. Annoying, but necessary I guess to fund the site.

There should be a way somehow where the 301 redirects and off-site scripting could be avoided, yet still offer some ads or hosted banners, kind of like ARF. Having the site throw up a security warning or hijack the browser while an ad runs ain't fun.....Skip Ad in 4, 3, 2, 1.....

MadMan
09-03-2017, 03:21 AM
Having the site throw up a security warning or hijack the browser while an ad runs ain't fun.....Skip Ad in 4, 3, 2, 1.....

adblock ftw.

Dude111
09-04-2017, 03:40 AM
Firefox blows....Just ignore thier stupid warning....

THIS SITE DID NOT ALL OF A SUDDEN BECOME PARTICUALLY UNSAFE!!

Findm-Keepm
09-04-2017, 10:04 AM
Firefox blows....Just ignore thier stupid warning....

THIS SITE DID NOT ALL OF A SUDDEN BECOME PARTICUALLY (sic) UNSAFE!!

ANY non-https:// site is unsafe in todays script-happy Internet. When major ISPs get hacked through a script injection, or when Apple and Amazon get hacked because of non-TLS/non-SSH activity, you can be sure just about any other site(s) can and will, eventually.

Block the non-VK hosted scripts, and get on with things. It matters not what browser you are using - the hijack is server side.....

Dude111
09-07-2017, 10:07 PM
Yes its GOOD to have scripts disabled for sure!!!! (Any browser like you say)

Electronic M
09-08-2017, 09:29 AM
Firefox blows....Just ignore thier stupid warning....


Says someone using, what was it again IE4 on a windows 98 rig?....To use an automotive analogy: Before you criticize the Austin-Martin owner for having a car that don't start on damp days, you might want to stop driving your riding lawn mover on the Interstate...:smoke:

Dude111
09-08-2017, 09:42 AM
No bud im using IE6 (Well MyIE2) on my favourite OS: Win98se :)

centralradio
09-08-2017, 08:05 PM
I get that all the time with Firefox logging in on all forums including this one.