Sponsored Links

Security Tweaks

Mark.J

Administrator
Staff member
ISPreview Team
I've been implementing some stricter server side controls / rules today, mainly to keep up with standards and because I actually had some rare free time to do it. But it's possible that the new rules may prevent some scripts or systems from working properly, so please let me know if you spot anything that has broken today (on this forum). My own initial testing suggests all is well, although it's easy to miss things on a site of this size.
 
Screenshot 2023-01-06 at 17.45.21.png

Not sure if it’s related but I had some weirdness yesterday, such as all alternative ‘like’ options disappearing and only thumbs up like being available. When pressed then being taken to a confirmation screen.

Logged in and out several times too. Restarted browser. If it was a problem my end surely I wouldn’t be taken to a confirm action screen for likes?
 
I don't think that's the security tweak (I initially thought it might be too), but it's a separate conflict between two systems that I'm actively working to bug report at the moment. You might see this occur temporarily again as part of testing, which I'm trying to do when people are more likely to be away from the forum.

Broadly, this relates to a conflict between Java/CSS overlays, with one system - when enabled - getting in the way of the other. I'm keeping the new system disabled while troubleshooting.
 
Sponsored Links
Yes, you will have seen this issue over the past couple of days on the forum, as that chimes with the system I've been testing. But I've finished testing it for now, so hopefully everything should work as normal (I did some testing this morning too).

The issue Candlerb reports is however separate and just a matter of choice, rather than a system conflict.
 
Well, there's an ad not working on the latest news item (Which? haggling), but it seems to be working elsewhere in news.

All I see is this:

1000){r=r.substring(0,r.length-1);}return r;}());} var ftDomain = (window==top)?"":(function(){var d=document.referrer,h=(d)?d.match("(?::q/q/)+([qw-]+(q.[qw-]+)+)(q/)?".replace(/q/g,decodeURIComponent("%"+"5C")))[1]:"";return (h&&h!=location.host)?"&ft_ifb=1&ft_domain="+encodeURIComponent(h):"";}()); var ftV_4253493={pID:"4253493",width:"728",height:"90",params:
 
The issue Candlerb reports is however separate and just a matter of choice, rather than a system conflict.
Do you mean your choice, i.e. you chose not to enable comments for that article?

If so it's confusing, because under the article, readers are still invited to
"Leave a Comment (0 Responses)" and "Javascript must be enabled to post (most browsers do this automatically)"
 
Sponsored Links
Yes, and I agree that's confusing. I wanted to show a simple 'Comments are closed on this article' message, but due to the tactics I use for tricking spam robots, I found I couldn't do that without wrecking one of the tricks. I think there's a solution though, but it's just one of those less important things that I could solve if I find the time to focus on it a bit.
 
Well, there's an ad not working on the latest news item (Which? haggling), but it seems to be working elsewhere in news.

All I see is this:

1000){r=r.substring(0,r.length-1);}return r;}());} var ftDomain = (window==top)?"":(function(){var d=document.referrer,h=(d)?d.match("(?::q/q/)+([qw-]+(q.[qw-]+)+)(q/)?".replace(/q/g,decodeURIComponent("%"+"5C")))[1]:"";return (h&&h!=location.host)?"&ft_ifb=1&ft_domain="+encodeURIComponent(h):"";}()); var ftV_4253493={pID:"4253493",width:"728",height:"90",params:

That's just one of those random things where an ad doesn't render properly, which is down to the network (Google) rather than anything I can control. You'll probably find that things like that go away with a page refresh.
 
FYI - I've re-done some of the news comments structure, so now they should be a bit more logical and correctly communicate when comments are closed. Going to test this for a bit in case my new code breaks anything in the content loop.
 
  • Like
Reactions: Msh
Top
Cheap BIG ISPs for 100Mbps+
Community Fibre UK ISP Logo
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £22.99
132Mbps
Gift: None
Vodafone UK ISP Logo
Vodafone £24.00 - 26.00
150Mbps
Gift: None
NOW UK ISP Logo
NOW £24.00
100Mbps
Gift: None
Plusnet UK ISP Logo
Plusnet £25.99
145Mbps
Gift: £50 Reward Card
Large Availability | View All
Cheapest ISPs for 100Mbps+
Gigaclear UK ISP Logo
Gigaclear £17.00
200Mbps
Gift: None
Community Fibre UK ISP Logo
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £22.99
132Mbps
Gift: None
Hey! Broadband UK ISP Logo
150Mbps
Gift: None
Youfibre UK ISP Logo
Youfibre £23.99
150Mbps
Gift: None
Large Availability | View All
Sponsored Links
The Top 15 Category Tags
  1. FTTP (6026)
  2. BT (3639)
  3. Politics (2721)
  4. Business (2439)
  5. Openreach (2405)
  6. Building Digital UK (2330)
  7. Mobile Broadband (2146)
  8. FTTC (2083)
  9. Statistics (1901)
  10. 4G (1816)
  11. Virgin Media (1764)
  12. Ofcom Regulation (1582)
  13. Fibre Optic (1467)
  14. Wireless Internet (1462)
  15. 5G (1407)
Sponsored

Copyright © 1999 to Present - ISPreview.co.uk - All Rights Reserved - Terms  ,  Privacy and Cookie Policy  ,  Links  ,  Website Rules