DayTrip
Well-known member
- Joined
- May 13, 2013
- Messages
- 4,015
- Reaction score
- 255
I was sufficiently annoyed by the Admin's reply that I did a little research. I was also able to duplicate security error (screenshot below) although it happened before I started paying attention to what I was doing so I'm not sure what combination of events I did to cause it. Other things I did:
> I fully cleaned and restarted my machine, confirmed there were no cookies on PC and logged into VFTT. I had 44 cookies on it at that point. Of course the platform is ad supported now so that isn't a big surprise. I ran antivirus and malware after and none were flagged as an issue, which also wasn't a surprise. I also noticed that the VFTT site always asks to enable push notifications. Could that be interpreted as a threat by some apps? No idea, but I suspect not.
> The Xenforo platform is flagged in several websites for a variety of SSL and other security issues, but most of what I found was older versions. I could only find info one recent exploit regarding the admin panel and it was deemed "low risk". They have a website and forum: https://xenforo.com/community/ . I found it interesting that the admins on that forum were also pretty obnoxious and condescending to posters there as well. So I assume our admin is an actual Xenforo employee.
> My Chrome address bar indicated the VFTT pages as secure with a current certificate at all times during this process.
> On the Xenforo forum here is an article that specifically addresses the error I encountered. It is from a 2014 post so not sure if the current technology is relevant to current versions of Xenforo, Chrome, etc but I assume it probably does. If I'm understanding it correctly it is a "time out" issue. When I did as the prompt asked I logged in fine without error messages. The old VFTT used to log me out after about 20 minutes of inactivity so I assume the new platform is doing a similar thing and that may be the source of the error. I don't have any grand kids to walk me through this though so I could be wrong....
https://xenforo.com/community/threa...ss-back-refresh-the-page-and-try-again.25839/
> I fully cleaned and restarted my machine, confirmed there were no cookies on PC and logged into VFTT. I had 44 cookies on it at that point. Of course the platform is ad supported now so that isn't a big surprise. I ran antivirus and malware after and none were flagged as an issue, which also wasn't a surprise. I also noticed that the VFTT site always asks to enable push notifications. Could that be interpreted as a threat by some apps? No idea, but I suspect not.
> The Xenforo platform is flagged in several websites for a variety of SSL and other security issues, but most of what I found was older versions. I could only find info one recent exploit regarding the admin panel and it was deemed "low risk". They have a website and forum: https://xenforo.com/community/ . I found it interesting that the admins on that forum were also pretty obnoxious and condescending to posters there as well. So I assume our admin is an actual Xenforo employee.
> My Chrome address bar indicated the VFTT pages as secure with a current certificate at all times during this process.
> On the Xenforo forum here is an article that specifically addresses the error I encountered. It is from a 2014 post so not sure if the current technology is relevant to current versions of Xenforo, Chrome, etc but I assume it probably does. If I'm understanding it correctly it is a "time out" issue. When I did as the prompt asked I logged in fine without error messages. The old VFTT used to log me out after about 20 minutes of inactivity so I assume the new platform is doing a similar thing and that may be the source of the error. I don't have any grand kids to walk me through this though so I could be wrong....
https://xenforo.com/community/threa...ss-back-refresh-the-page-and-try-again.25839/
Attachments
Last edited: