Jump to content



Recommended Posts

So, I started seeing some Javascript errors on the site, and I noticed, scripts for certain functionality, changed URLs over to http://hak5.ipbhost.com

Not sure if this is due to them hosting, or acting as a CDN, but not sure why that has suddenly changed. Consider myself a paranoid user, but see no reason for them to hijack the scripting that was working fine up till now.

Also, I know we don't use https, and its never really been an issue, since I use a throw away password on the site, but I also noticed since this new ipbhost.com set of scripts shown up, so do our secure hashes and cookies within the source of the sites page. Maybe its is time to go SSL?

Not really cool its showing up in plain text in the source of the site. Granted I use a VPN to connect, but still not cool to have it in the page as plain text for everyone else.

/* ---- URLs ---- */		ipb.vars['base_url'] 			= 'http://forums.hak5.org/index.phpxxxx';		ipb.vars['board_url']			= 'http://forums.hak5.org';		ipb.vars['img_url'] 			= "http://forums.hak5.org/public/style_images/master";		ipb.vars['loading_img'] 		= 'http://forums.hak5.org/public/style_images/master/loading.gif';		ipb.vars['active_app']			= 'forums';		ipb.vars['upload_url']			= 'http://hak5.ipbhost.com/uploads';		/* ---- Member ---- */		ipb.vars['member_id']			= parseInt( xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx );		ipb.vars['is_supmod']			= parseInt( 0 );		ipb.vars['is_admin']			= parseInt( 0 );		ipb.vars['secure_hash'] 		= 'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx';		ipb.vars['session_id']			= 'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx';		ipb.vars['twitter_id']			= 0;		ipb.vars['fb_uid']				= 0;		ipb.vars['auto_dst']			= parseInt( 1 );		ipb.vars['dst_in_use']			= parseInt( 1 );		ipb.vars['is_touch']			= false;		ipb.vars['member_group']		= {"g_mem_info":"1"}		/* ---- cookies ----- */		ipb.vars['cookie_id'] 			= 'hak5_';		ipb.vars['cookie_domain'] 		= 'forums.hak5.org';		ipb.vars['cookie_path']			= '/';		/* ---- Rate imgs ---- */		ipb.vars['rate_img_on']			= 'http://forums.hak5.org/public/style_images/master/star.png';		ipb.vars['rate_img_off']		= 'http://forums.hak5.org/public/style_images/master/star_off.png';		ipb.vars['rate_img_rated']		= 'http://forums.hak5.org/public/style_images/master/star_rated.png';		/* ---- Uploads ---- */		ipb.vars['swfupload_swf']		= 'http://forums.hak5.org/public/js/3rd_party/swfupload/swfupload.swf';		ipb.vars['swfupload_enabled']	= true;		ipb.vars['use_swf_upload']		= ( 'default' == 'flash' ) ? true : false;		ipb.vars['swfupload_debug']		= false;		/* ---- other ---- */		ipb.vars['highlight_color']     = "#ade57a";		ipb.vars['charset']				= "iso-8859-1";		ipb.vars['seo_enabled']			= 1;				ipb.vars['seo_params']			= {"start":"-","end":"\/","varBlock":"?","varPage":"page-","varSep":"&","varJoin":"="};				/* Templates/Language */		ipb.templates['inlineMsg']		= "";		ipb.templates['ajax_loading'] 	= "<div id='ajax_loading'><img src='http://forums.hak5.org/public/style_images/master/ajax_loading.gif' alt='" + ipb.lang['loading'] + "' /></div>";		ipb.templates['close_popup']	= "<img src='http://forums.hak5.org/public/style_images/master/close_popup.png' alt='x' />";		ipb.templates['rss_shell']		= new Template("<ul id='rss_menu' class='ipbmenu_content'>#{items}</ul>");		ipb.templates['rss_item']		= new Template("<li><a href='#{url}' title='#{title}'>#{title}</a></li>");					ipb.templates['m_add_friend']	= new Template("<a href='http://forums.hak5.org/index.php?app=members&amp;module=profile&amp;section=friends&amp;do=add&amp;member_id=#{id}' title='Add as Friend' class='ipsButton_secondary'><img src='http://forums.hak5.org/public/style_images/master/user_add.png' alt='Add as Friend' /></a>");			ipb.templates['m_rem_friend']	= new Template("<a href='http://forums.hak5.org/index.php?app=members&amp;module=profile&amp;section=friends&amp;do=remove&amp;member_id=#%7Bid%7D'>http://forums.hak5.org/index.php?app=members&amp;module=profile&amp;section=friends&amp;do=remove&amp;member_id=#{id}' title='Remove Friend' class='ipsButton_secondary'><img src='http://forums.hak5.org/public/style_images/master/user_delete.png'>http://forums.hak5.org/public/style_images/master/user_delete.png' alt='Remove Friend' /></a>");				ipb.templates['autocomplete_wrap'] = new Template("<ul id='#{id}' class='ipb_autocomplete' style='width: 250px;'></ul>");		ipb.templates['autocomplete_item'] = new Template("<li id='#{id}' data-url='#{url}'><img src='#{img}' alt='' class='ipsUserPhoto ipsUserPhoto_mini' />&nbsp;&nbsp;#{itemvalue}</li>");		ipb.templates['page_jump']		= new Template("<div id='#{id}_wrap' class='ipbmenu_content'><h3 class='bar'>Jump to page</h3><p class='ipsPad'><input type='text' class='input_text' id='#{id}_input' size='8' /> <input type='submit' value='Go' class='input_submit add_folder' id='#{id}_submit' /></p></div>");		ipb.templates['global_notify'] 	= new Template("<div class='popupWrapper'><div class='popupInner'><div class='ipsPad'>#{message} #{close}</div></div></div>");						ipb.templates['header_menu'] 	= new Template("<div id='#{id}' class='ipsHeaderMenu boxShadow'></div>");					ipb.global.checkDST();				Loader.boot();
Edited by digip
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...