GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Flash poses a security risk to GFY, change your sigs.

Lensman · 10-15-2003, 12:53 PM

We recently became aware of a Flash exploit that allows, among other things, to steal a GFY user's cookie, load it on their computer and start posting as you, or worse, as a moderator and start deleting threads, banning people, etc.

We banned a flash parameter last week that we believed stopped this exploit. But after a malicious Flash demonstration last night, we have decided to not allow the em-bedding a flash in your posts or sigs. Even if our fix last week stopped the cookie exploit, a flash sig can launch pop-ups, and much more.

Last week, we notified many advertisers of this and asked them to quietly change their sigs to gifs, as we did not want to alert anyone who would potentially try to hack accounts.

GFY advertisers' banners are not effected.

You need to change your sigs to gifs or jpgs. Sorry for the hassle.

10-15-2003, 12:53 PM
Lensman GFY Chaperone Join Date: Jan 2001 Location: Adult.com Posts: 9,846	Flash poses a security risk to GFY, change your sigs. We recently became aware of a Flash exploit that allows, among other things, to steal a GFY user's cookie, load it on their computer and start posting as you, or worse, as a moderator and start deleting threads, banning people, etc. We banned a flash parameter last week that we believed stopped this exploit. But after a malicious Flash demonstration last night, we have decided to not allow the em-bedding a flash in your posts or sigs. Even if our fix last week stopped the cookie exploit, a flash sig can launch pop-ups, and much more. Last week, we notified many advertisers of this and asked them to quietly change their sigs to gifs, as we did not want to alert anyone who would potentially try to hack accounts. GFY advertisers' banners are not effected. You need to change your sigs to gifs or jpgs. Sorry for the hassle. Last edited by Lensman; 10-15-2003 at 01:07 PM..