Image Policy Change

This forum is for Administrators to post news concerning the site and forums.
Forum rules
User avatar
zoraster
zoraster
He/Him
Disorganized Crime
User avatar
User avatar
zoraster
He/Him
Disorganized Crime
Disorganized Crime
Posts: 21677
Joined: June 10, 2008
Pronoun: He/Him
Location: Belmont, CA

Post Post #50 (ISO) » Mon Jul 16, 2012 8:02 am

Post by zoraster »

Yes?

The problem is that Chrome will block pages with malware links. Since many people use chrome, that's an issue.
.
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #51 (ISO) » Mon Jul 16, 2012 8:07 am

Post by Zachrulez »

zoraster wrote:Yes?

The problem is that Chrome will block pages with malware links. Since many people use chrome, that's an issue.


Yup, one worth punishing the user for. (Which by what I'm reading about poses no actual malware threat, we're just going to punish users for triggering a warning they might not know about because they don't use chrome.)
User avatar
zoraster
zoraster
He/Him
Disorganized Crime
User avatar
User avatar
zoraster
He/Him
Disorganized Crime
Disorganized Crime
Posts: 21677
Joined: June 10, 2008
Pronoun: He/Him
Location: Belmont, CA

Post Post #52 (ISO) » Mon Jul 16, 2012 8:08 am

Post by zoraster »

It's not about punishing. It's about stopping the problem.
.
User avatar
animorpherv1
animorpherv1
Honey Trap
User avatar
User avatar
animorpherv1
Honey Trap
Honey Trap
Posts: 5763
Joined: April 12, 2008
Location: Untraveled Road
Contact:

Post Post #53 (ISO) » Mon Jul 16, 2012 8:09 am

Post by animorpherv1 »

Zachrulez wrote:we're just going to punish users for triggering a warning they might not know about because they don't use chrome.)


Does this seem a little bit off to anyone else?
"Animorpherv1's posts are so powerful that prolonged exposure may cause vertigo, nausea, acute tinnitus, and in rare cases, death." - vonflare

"Ani is right 100% of the time" - Alisae
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #54 (ISO) » Mon Jul 16, 2012 8:10 am

Post by Zachrulez »

zoraster wrote:It's not about punishing. It's about stopping the problem.


The problem is apparently a design flaw in Chrome, so yeah.
User avatar
gorckat
gorckat
Mafia Scum
User avatar
User avatar
gorckat
Mafia Scum
Mafia Scum
Posts: 2830
Joined: January 17, 2007
Location: Bawlmer, Hon!

Post Post #55 (ISO) » Mon Jul 16, 2012 8:13 am

Post by gorckat »

I thought it was more that if Chrome is blocking the site, then it's on Google's list of compromised sites and that affects searches and such.
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #56 (ISO) » Mon Jul 16, 2012 8:15 am

Post by Zachrulez »

Well from what I'm reading the images themselves are actually safe. (Copy it and upload to a reputable site.) Apparently even a safe image will trigger a malware warning in chrome because chrome will block an entire blacklisted site? Seems like bad browser design to me.
User avatar
zoraster
zoraster
He/Him
Disorganized Crime
User avatar
User avatar
zoraster
He/Him
Disorganized Crime
Disorganized Crime
Posts: 21677
Joined: June 10, 2008
Pronoun: He/Him
Location: Belmont, CA

Post Post #57 (ISO) » Mon Jul 16, 2012 8:16 am

Post by zoraster »

Be that as it may, we don't have control over how Chrome treats things.
.
User avatar
animorpherv1
animorpherv1
Honey Trap
User avatar
User avatar
animorpherv1
Honey Trap
Honey Trap
Posts: 5763
Joined: April 12, 2008
Location: Untraveled Road
Contact:

Post Post #58 (ISO) » Mon Jul 16, 2012 8:16 am

Post by animorpherv1 »

Also, when I used Chrome (I only stopped at like May-ish for Firefox), I never ran into any issues. so that talks to the severity of the issue.
"Animorpherv1's posts are so powerful that prolonged exposure may cause vertigo, nausea, acute tinnitus, and in rare cases, death." - vonflare

"Ani is right 100% of the time" - Alisae
User avatar
zoraster
zoraster
He/Him
Disorganized Crime
User avatar
User avatar
zoraster
He/Him
Disorganized Crime
Disorganized Crime
Posts: 21677
Joined: June 10, 2008
Pronoun: He/Him
Location: Belmont, CA

Post Post #59 (ISO) » Mon Jul 16, 2012 8:18 am

Post by zoraster »

Yeah i use chrome at home and have never had a problem
.
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #60 (ISO) » Mon Jul 16, 2012 8:18 am

Post by Zachrulez »

Anyway, I'm pretty sure most if not all browsers have built in anti-malware, so the onus you're putting on the user in this regard is unrealistic. If their own browser won't flag it, you're basically punishing them for not using chrome.
User avatar
gorckat
gorckat
Mafia Scum
User avatar
User avatar
gorckat
Mafia Scum
Mafia Scum
Posts: 2830
Joined: January 17, 2007
Location: Bawlmer, Hon!

Post Post #61 (ISO) » Mon Jul 16, 2012 8:20 am

Post by gorckat »

badurl.domain is compromised, and Google knows it.

Your browser tries to access a file at badurl.domain and Chrome blocks it.

Chrome isn't scanning the image- it's checking the source.

I don't think any browsers are actively scanning for malware (that'd be slow). AVG and Google and others are making tools to do what is described above.
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #62 (ISO) » Mon Jul 16, 2012 8:22 am

Post by Zachrulez »

Well yeah, it's done through a blacklist. Blacklists get bigger, reputable sites become unreputable, become compromised and then get fixed and all that. Basically this is like trying to contain a wildfire in a dry forest.
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #63 (ISO) » Mon Jul 16, 2012 8:24 am

Post by Zachrulez »

Oh and browsers probably don't actively scan for malware, but I'm pretty sure anti-viruses will.
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #64 (ISO) » Mon Jul 16, 2012 8:30 am

Post by Zachrulez »

But yeah, I don't see why there's a need to threaten punishment for this. If you explain to whoever is doing this stuff what is going on, how they can clean their computer and how to keep from accessing a malware contaminated site again, I don't see why this would be a problem for anyone. I don't think there's a single user on this site that wants to be infected by malware.
User avatar
shaft.ed
shaft.ed
dem.agogue
User avatar
User avatar
shaft.ed
dem.agogue
dem.agogue
Posts: 4998
Joined: August 15, 2007
Location: St. Louis

Post Post #65 (ISO) » Mon Jul 16, 2012 8:38 am

Post by shaft.ed »

Zachrulez wrote:I don't think there's a single user on this site that wants to be infected by malware.
which is kinda the whole point
User avatar
redFF
redFF
Mafia Scum
User avatar
User avatar
redFF
Mafia Scum
Mafia Scum
Posts: 3219
Joined: April 24, 2011
Location: Burlington, VT

Post Post #66 (ISO) » Mon Jul 16, 2012 8:40 am

Post by redFF »

Zachrulez wrote:I don't think there's a single user on this site that wants to be infected by malware.

Speak for yourself.
we got purple actavis i thought it was a drought!
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #67 (ISO) » Mon Jul 16, 2012 8:53 am

Post by Zachrulez »

shaft.ed wrote:
Zachrulez wrote:I don't think there's a single user on this site that wants to be infected by malware.
which is kinda the whole point


Nothing in the OP seems to come even close to giving a damn about the fact that the person posting the image might not even realize their computer is compromised. (If it was me, I'd be more pissed that ms seems to care more about the implications of what it means to the site vs what it means for my computer.)

Hell the proposed solution to avoid punishment even dances around the idea of how to copy images from a compromised site safely. (Which you'd have to know was compromised in the first place.) That's like teaching a kid how to play with fire.

Anyway, bluntly. You can't hold people responsible for that at a user level. If you can't handle that little bit of administrative duty, then you shouldn't be an admin. Not everyone is going to have the same knowledge as you and the community is only going to suffer from an admin expecting that.
User avatar
zoraster
zoraster
He/Him
Disorganized Crime
User avatar
User avatar
zoraster
He/Him
Disorganized Crime
Disorganized Crime
Posts: 21677
Joined: June 10, 2008
Pronoun: He/Him
Location: Belmont, CA

Post Post #68 (ISO) » Mon Jul 16, 2012 9:00 am

Post by zoraster »

It's not someone's computer that's compromised from what I can tell. It's the site itself you hotlink from. Maybe that's why you're having such a severe disconnect from everyone, zach?

The way it works is that someone searches somewhere for a comic or something. They find it on a less than reputable site. They take a link of the jpg or whatever from that site, and then they slap on a couple of [img] tags. Then it trips it.

It's nothing about their computer being infected or not.
.
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #69 (ISO) » Mon Jul 16, 2012 9:02 am

Post by Zachrulez »

zoraster wrote:It's not someone's computer that's compromised from what I can tell. It's the site itself you hotlink from. Maybe that's why you're having such a severe disconnect from everyone, zach?

The way it works is that someone searches somewhere for a comic or something. They find it on a less than reputable site. They take a link of the jpg or whatever from that site, and then they slap on a couple of [img] tags. Then it trips it.

It's nothing about their computer being infected or not.


Well you have to visit the site to hotlink from it Zor. Then your computer generally becomes compromised. (Depending on what's actually on the site.)
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #70 (ISO) » Mon Jul 16, 2012 9:04 am

Post by Zachrulez »

Anyway, again. I'm going to put the emphasis on the fact that you can't expect the user to know what isn't reputable. The filter chrome uses along with any other anti-malware browser of anti-virus changes frequently.

Also Chrome is the only thing flagging this stuff, then Chrome is the problem, not the users. (Because if their anti-malware isn't picking it up, what the heck are you expecting exactly?)
Last edited by Zachrulez on Mon Jul 16, 2012 9:09 am, edited 1 time in total.
User avatar
zoraster
zoraster
He/Him
Disorganized Crime
User avatar
User avatar
zoraster
He/Him
Disorganized Crime
Disorganized Crime
Posts: 21677
Joined: June 10, 2008
Pronoun: He/Him
Location: Belmont, CA

Post Post #71 (ISO) » Mon Jul 16, 2012 9:07 am

Post by zoraster »

Meh. Sometimes. Chrome is kind of aggressive about it. If you get it from a site that has a bad reputation for dodgy downloads (DOWNLOAD NOW!) then it might be marked even if the actual image and site you accessed the image through was fine. Regardless, the fact your computer is infected is actually irrelevant for the hotlink's goodness or badness.

Anyway, If you're being honest I will too: it's neither MS's job nor is it the administration's job to care about what diseases your computer picks up unless it's from MS itself. The goal is to preserve MS as a clean site.
.
User avatar
zoraster
zoraster
He/Him
Disorganized Crime
User avatar
User avatar
zoraster
He/Him
Disorganized Crime
Disorganized Crime
Posts: 21677
Joined: June 10, 2008
Pronoun: He/Him
Location: Belmont, CA

Post Post #72 (ISO) » Mon Jul 16, 2012 9:08 am

Post by zoraster »

Zachrulez wrote:Anyway, again. I'm going to put the emphasis on the fact that you can't expect the user to know what isn't reputable. The filter chrome uses along with any other anti-malware browser of anti-virus changes frequently.


Well I think that's why chamber suggested using imgur or photobucket or whatever. You know that you can use those and either (a) be safe or (b) if something WERE to go wrong, you'd be held harmless.
.
User avatar
Zachrulez
Zachrulez
Jack of All Trades
User avatar
User avatar
Zachrulez
Jack of All Trades
Jack of All Trades
Posts: 8536
Joined: December 5, 2008
Location: Minnesota
Contact:

Post Post #73 (ISO) » Mon Jul 16, 2012 9:13 am

Post by Zachrulez »

I don't use either, but I not at particular risk of linking to compromised sites because avast is integrated into my opera to detect malware sites.

And as far as I can tell, MS actually is clean. The problem is an over aggressive chrome browser which is like the number 3 browser? I mean this might be something you need to accept as a downside of chrome.
User avatar
zoraster
zoraster
He/Him
Disorganized Crime
User avatar
User avatar
zoraster
He/Him
Disorganized Crime
Disorganized Crime
Posts: 21677
Joined: June 10, 2008
Pronoun: He/Him
Location: Belmont, CA

Post Post #74 (ISO) » Mon Jul 16, 2012 9:21 am

Post by zoraster »

Chrome is a very popular browser. It kind of depends on how you count, but by some metrics, it's the number 1 browser.

http://en.wikipedia.org/wiki/Usage_shar ... b_browsers
.
Post Reply