Netgate SG-1000 microFirewall

Author Topic: Google warning on this Forum! Deceptive site ahead  (Read 2273 times)

0 Members and 1 Guest are viewing this topic.

Offline SamTzu

  • Jr. Member
  • **
  • Posts: 33
  • Karma: +1/-0
    • View Profile
Google warning on this Forum! Deceptive site ahead
« on: January 11, 2017, 08:17:39 pm »
Forum Certification seems to be broken and I got this when I tried to open a thread on this forum...
https://forum.pfsense.org/index.php?topic=119261.0

Deceptive site ahead

Attackers on sts.opinionator.net may trick you into doing something dangerous like installing software or revealing your personal information (for example, passwords, phone numbers, or credit cards).
Back to safetyHIDE DETAILS
Google Safe Browsing recently detected phishing on sts.opinionator.net. Phishing sites pretend to be other websites to trick you. Learn more.

You can report a detection problem or, if you understand the risks to your security, visit this unsafe site.
« Last Edit: January 11, 2017, 08:21:31 pm by SamTzu »

Offline KimmoJ

  • Jr. Member
  • **
  • Posts: 34
  • Karma: +0/-0
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #1 on: January 12, 2017, 04:25:18 am »
Not seeing anything like that. My browser just says part of the content is unencrypted.

Are you sure your own computer/browser hasn't gotten malwared up?

Offline KOM

  • Hero Member
  • *****
  • Posts: 5609
  • Karma: +688/-23
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #2 on: January 12, 2017, 07:58:13 am »
No such problems here with Chrome 55.

Offline chrismacmahon

  • Administrator
  • Jr. Member
  • *****
  • Posts: 91
  • Karma: +2/-0
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #3 on: January 12, 2017, 08:10:45 am »
Looks like we fixed this, can you verify?

Offline jimp

  • Administrator
  • Hero Member
  • *****
  • Posts: 21571
  • Karma: +1471/-26
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #4 on: January 12, 2017, 08:14:01 am »
A user set their avatar to load from a URL, and that server is now flagged as dangerous by Chrome. We removed the avatar.
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!

Offline SamTzu

  • Jr. Member
  • **
  • Posts: 33
  • Karma: +1/-0
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #5 on: January 15, 2017, 05:49:39 am »
:) LOL.
What was that old saying about bad association?

Offline bimmerdriver

  • Sr. Member
  • ****
  • Posts: 515
  • Karma: +21/-3
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #6 on: January 15, 2017, 04:53:27 pm »
The indices are showing up as secure, but when I open a thread, it shows up as mixed content. While I'm writing this reply, it's also showing up as secure. Maybe some minor glitches in the certificate?

Offline Derelict

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 9823
  • Karma: +1111/-311
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #7 on: January 15, 2017, 07:01:16 pm »
It will always show mixed http/https because, for example, the avatar above is sourced directly from here:

http://sami.mattila.eu/images/sam5.jpg

As I understand it, the only alternative is to deny outside sourcing of images/avatars and require they all be served by https://forum.pfsense.org/ or at least all over https.

The reply page doesn't show as mixed content because it doesn't include avatars and attachments.
Las Vegas, Nevada, USA
Use this diagram to describe your issue.
The pfSense Book is now available for just $24.70!
Do Not PM For Help! NO_WAN_EGRESSTM

Offline kpa

  • Hero Member
  • *****
  • Posts: 1233
  • Karma: +138/-6
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #8 on: January 15, 2017, 10:29:03 pm »
The indices are showing up as secure, but when I open a thread, it shows up as mixed content. While I'm writing this reply, it's also showing up as secure. Maybe some minor glitches in the certificate?

How could the pfsense.org certificate authenticate external content not hosted on forum.pfsense.org? In this case it's plain http so naturally no certificate is used for the connection.

Offline Gertjan

  • Hero Member
  • *****
  • Posts: 2435
  • Karma: +192/-9
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #9 on: January 16, 2017, 01:31:19 am »
I decided to change the http://... URL to my avatar for a https:// ... version.

I used https://forum.pfsense.org/index.php?action=profile;area=forumprofile

https://www.papy-team.fr/forum/e107_files/public/avatars/ap_59_nco_ranks_sergant.gif works when used directly.

But ... changing my profile ends up with a nice Your profile has been updated successfully and the setting is switched to "No avatar" like a https:// URL isn't accepted.

Btw : why not forcing a https URL if one chooses to use an avatar ?

edit : Better yet : retrying to set my URL gives me a "504 Gateway Time-out - nginx"
No avatars are shown on the main forum page ( https://forum.pfsense.org/index.php ) but still some info is send over using http, so navigators show "partially unsecured connection". : Ok, get it. It was my own avatar using http:// ... Logic.
« Last Edit: January 16, 2017, 01:40:49 am by Gertjan »

Offline jimp

  • Administrator
  • Hero Member
  • *****
  • Posts: 21571
  • Karma: +1471/-26
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #10 on: January 16, 2017, 06:39:26 am »
Just choose the option to upload the avatar and go that way. It appears SMF (at least this version) doesn't want to allow HTTPS avatars.
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!

Offline jahonix

  • Hero Member
  • *****
  • Posts: 2533
  • Karma: +154/-20
  • volunteer since 2006
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #11 on: January 16, 2017, 06:46:16 am »
Where can I upload an avatar?
Chris

The issue with IPv6 jokes is that almost no one understands them and no one is using them yet.

Offline jimp

  • Administrator
  • Hero Member
  • *****
  • Posts: 21571
  • Karma: +1471/-26
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #12 on: January 16, 2017, 06:48:01 am »
Hmm, maybe it requires a higher level of permission. It shows for me.
Need help fast? Commercial Support!

Co-Author of pfSense: The Definitive Guide. - Check the Doc Wiki for FAQs.

Do not PM for help!

Offline GruensFroeschli

  • Little Green Frog
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 5447
  • Karma: +87/-3
  • No i will not fix your computer!
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #13 on: January 16, 2017, 06:55:45 am »
I only have the first 3 options.
I just tried to change the URL to my avatar (to https://skylabs.ch/avatar.png) and now the avatar is gone completly.

Edit: Yeah changing the link to http://skylabs.ch/avatar.png seems to work, but isn't that what the google warning is about? That you have a https page which includes http content?>
We do what we must, because we can.

Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html

Offline doktornotor

  • Hero Member
  • *****
  • Posts: 8553
  • Karma: +962/-278
  • Not a pfSense employee, they cannot fire me...
    • View Profile
Re: Google warning on this Forum! Deceptive site ahead
« Reply #14 on: January 16, 2017, 07:19:27 am »
Edit: Yeah changing the link to http://skylabs.ch/avatar.png seems to work, but isn't that what the google warning is about? That you have a https page which includes http content?

No, that's not a mixed content warning. It's about a site being in the Google Safebrowsing DB. As for mixed content, the only solution here would be adding a header to force everything via HTTPS. At that point, you break not just avatars but thousands and thousands of images linked from other sources here that have no support for HTTPS.
Do NOT PM for help!