Jump to content

Man Cave


fortyofforty
 Share

Recommended Posts

The Man Cave is entirely lost to me....   It continually 'refreshes' and if I'm quick enough to click on a posting,  the posting refreshes back to the Man cave, which, again, continually 'refreshes'. 

I am unable to like/respond to posts.   Previews indicate there is an error displaying,  I can't even see my profile when I hover over my avatar.

I can only get to the next page of a longer thread by pasting '?page=2' into the URL.

If there has been any interest shown by the management, here, I've missed it.

I like this site, but it has become a bit too frustrating to be fun.   I'll go back to sending more time on other forums that aren't glitched up.

 

 

 

 

Edited by misterfox
Missed information
Link to comment
Share on other sites

Did you know there was a system upgrade to the forum yesterday I believe.  I was have similar problems until I did system restore to an earlier date and then reinstalled Foxfire.  I suspect but have no proof it has to do with recent MS updates and the browser setting on individual computers since it seems to only affect some people not all.  Just my personal experience.

Link to comment
Share on other sites

  • Administrators

I didn't see this thread until just now. In the future, if I do not respond to something like this, PM me. I may not have seen the report.

This problem is not occurring for me. Is it still happening for anyone? If so, can you all let me know what Os and Internet browser you are using? Thanks.

Link to comment
Share on other sites

  • Administrators

FWIW guys, I DO NOT use secure (HTTPS) connections here, at this time. If you are attempting to view the site that way, that may be the source of your problems. At any rate, I am looking into it.

Link to comment
Share on other sites

Eric, seriously I haven't changed anything about how I look at the site.  My two computers are the same.  I can't explain what's going on (but I am not a tech guy like you, either).  There are numerous "bugs" rearing their heads right now, as you can see.

In the address bar, the first characters, even as I type this, are "https://theboresite.com/,,,,,,"  Are you saying that's not right?

In any case, I do appreciate you responding and that you are looking into it.  That actually means a lot.

Link to comment
Share on other sites

  • Administrators
1 hour ago, fortyofforty said:

Eric, seriously I haven't changed anything about how I look at the site.  My two computers are the same.  I can't explain what's going on (but I am not a tech guy like you, either).  There are numerous "bugs" rearing their heads right now, as you can see.

In the address bar, the first characters, even as I type this, are "https://theboresite.com/,,,,,,"  Are you saying that's not right?

In any case, I do appreciate you responding and that you are looking into it.  That actually means a lot.

I'll say again that I do not have the site set up to be viewed using SSL (HTTPS). The correct URL should be http://theboresite.com/ . Try following that link and see if the internal links are stilling starting with HTTPS. They should not be.

Link to comment
Share on other sites

  • Administrators

I just checked and confirmed that all of the site's internal links are using HTTP protocol, not HTTPS. If you are landing on pages using HTTPS, you either visited the site from a secure URL, or you have a browser and/or security plugin that is converting the links on the fly. I don't know if this is causing the problems y'all are reporting, but it is an anomaly that I would like to get sorted.

Please let me know if you are still being linked to secure pages, after you follow the link I just posted. Also, let me know if this has any affect on the issues you are experiencing. Thanks.

Link to comment
Share on other sites

16 minutes ago, Eric said:

I'll say again that I do not have the site set up to be viewed using SSL (HTTPS). The correct URL should be http://theboresite.com/ . Try following that link and see if the internal links are stilling starting with HTTPS. They should not be.

 

fortyofforty said on the first page that this link causes him a reload loop:

https://theboresite.com/forums/forum/99-mc-forum/

When I open that link, it loads the entire page, then it reroutes to:

https//theboresite.com/forums/forum/99-mc-forum/

and reloads the page again, but only once.

Are you using .htaccess for this reroute? There may be a https to http rewrite issue going on that only affects certain browser settings, causing the redirect loop.

It probably should look like this:

# BEGIN FORCE HTTP
RewriteCond %{HTTP} !=on
RewriteCond %{ENV:HTTP} !=on
RewriteRule .* http://%{SERVER_NAME}%{REQUEST_URI} [R=301,L]*
# END FORCE HTTP

 

Edited by crockett
Link to comment
Share on other sites

  • Administrators
Just now, crockett said:

 

fortyofforty said on the first page that this link causes him a reload loop:

https://theboresite.com/forums/forum/99-mc-forum/

When I open that link, it loads the entire page, then it reroutes to:

https//theboresite.com/forums/forum/99-mc-forum/

and reloads the page again, but only once.

Are you using .htaccess for this reroute? There may be a http to https rewrite issue going on that only affects certain browser settings, causing the redirect loop.

It probably should look like this:

# BEGIN FORCE HTTP
RewriteCond %{HTTP} !=on
RewriteCond %{ENV:HTTP} !=on
RewriteRule .* http://%{SERVER_NAME}%{REQUEST_URI} [R=301,L]*
# END FORCE HTTP

 

No changes have been made to the site in at least two weeks. It sounds like this issue began for people on this past Saturday.

Link to comment
Share on other sites

  • Administrators
13 minutes ago, crockett said:

 

fortyofforty said on the first page that this link causes him a reload loop:

https://theboresite.com/forums/forum/99-mc-forum/

When I open that link, it loads the entire page, then it reroutes to:

https//theboresite.com/forums/forum/99-mc-forum/

and reloads the page again, but only once.

Are you using .htaccess for this reroute? There may be a https to http rewrite issue going on that only affects certain browser settings, causing the redirect loop.

It probably should look like this:

# BEGIN FORCE HTTP
RewriteCond %{HTTP} !=on
RewriteCond %{ENV:HTTP} !=on
RewriteRule .* http://%{SERVER_NAME}%{REQUEST_URI} [R=301,L]*
# END FORCE HTTP

 

FWIW, I checked the .htaccess file. There is nothing goig on there that could be causing the redirect. I appreciate the input.

Link to comment
Share on other sites

31 minutes ago, Eric said:

I just checked and confirmed that all of the site's internal links are using HTTP protocol, not HTTPS. If you are landing on pages using HTTPS, you either visited the site from a secure URL, or you have a browser and/or security plugin that is converting the links on the fly. I don't know if this is causing the problems y'all are reporting, but it is an anomaly that I would like to get sorted.

Please let me know if you are still being linked to secure pages, after you follow the link I just posted. Also, let me know if this has any affect on the issues you are experiencing. Thanks.

When I click on the link you provided, I am instantly and automatically redirected to the https side.  I honestly don't know the ins and outs of what all this means to you coders, but there it is.

Link to comment
Share on other sites

  • Administrators
3 minutes ago, fortyofforty said:

When I click on the link you provided, I am instantly and automatically redirected to the https side.  I honestly don't know the ins and outs of what all this means to you coders, but there it is.

It's not happening on this end. There is no mechanism on my server that will do that. I'll continue to look into this though.

Link to comment
Share on other sites

  • Administrators
8 minutes ago, fortyofforty said:

When I click on the link you provided, I am instantly and automatically redirected to the https side.  I honestly don't know the ins and outs of what all this means to you coders, but there it is.

Can you tell me what OS and browser you are using, and what browser version, if you know?

Link to comment
Share on other sites

  • Administrators

From what I've read, Internet Explorer does force HTTPS URLs to be returned to users. They have apparently been doing this for some time. I don't know if they changed how they operate recently and I do not know if changing the URLs to secure ones is causing any trouble for people on the site. I'll continue to look into this.

Link to comment
Share on other sites

I also just recalled that Google / Chrome started forcing this month none SSL websites to be marked as 'not secure'. They really want all websites to use a cert. Maybe that change was implement into some browser updates, redirecting every http request to https.

https://searchengineland.com/effective-july-2018-googles-chrome-browser-will-mark-non-https-sites-as-not-secure-291623

Link to comment
Share on other sites

54 minutes ago, crockett said:

I also just recalled that Google / Chrome started forcing this month none SSL websites to be marked as 'not secure'. They really want all websites to use a cert. Maybe that change was implement into some browser updates, redirecting every http request to https.

https://searchengineland.com/effective-july-2018-googles-chrome-browser-will-mark-non-https-sites-as-not-secure-291623

I commented about this in earlier post.  I had done some updates on my desktop and shortly after that I had problems and others started have similar problems.  I had commented about the yellow triangle on the padlock.  Anyway got rid of the updates and reinstalled Foxfire and problems went away.  People that have the updates set to automatically update and install will never know if it that was the cause.

Edited by pipedreams
  • Like 1
Link to comment
Share on other sites

51 minutes ago, misterfox said:

I clicked on your link and was taken to an https address for the boresite.

Windows 7 home premium 32 bit.

Firefox - current

I initially noted it at 8am Saturday - it started the day before.

boresite.png

 

@Eric

The webserver may have "Strict-Transport-Security" switched on, which causes Firefox to immediately switch to https once it was entered somewhere.

When somebody clicks a http link there is no problem. But when somebody either manually changes the URL to  https or there is just one https link the page sends a STS headers set. To explain it in short terms this STS header tells the browser that all webpages of this domain should always be opened using https. This is a security measure to stop man in the middle attacks using non-https pages. It really should only be set for really sensitive websites such as home banking.

The problem is that Firefox supports the STS headers and as such will from now on only open pages on your domain using https, which the causes the endless loop with your rerout to http. You can make FireFox forget ever seeing this header by using the forget option, but you need to make sure firefox doesn't see the https header again anywhere on your server or even external link.

It would be best to remove the STS option in the server config or tell the hoster whats going on.

 

Link to comment
Share on other sites

  • Administrators
3 minutes ago, crockett said:

 

@Eric

The webserver may have "Strict-Transport-Security" switched on, which causes Firefox to immediately switch to https once it was entered somewhere.

When somebody clicks a http link there is no problem. But when somebody either manually changes the URL to  https or there is just one https link the page sends a STS headers set. To explain it in short terms this STS header tells the browser that all webpages of this domain should always be opened using https. This is a security measure to stop man in the middle attacks using non-https pages. It really should only be set for really sensitive websites such as home banking.

The problem is that Firefox supports the STS headers and as such will from now on only open pages on your domain using https, which the causes the endless loop with your rerout to http. You can make FireFox forget ever seeing this header by using the forget option, but you need to make sure firefox doesn't see the https header again anywhere on your server or even external link.

It would be best to remove the STS option in the server config or tell the hoster whats going on.

 

It's a good tip, but that isn't what is happening. I would be able to duplicate that behavior and it is not occurring.

Link to comment
Share on other sites

Bear in mind, there are other glitches, maybe related or unrelated.  I cannot see a preview by hovering over a topic anymore.  And I cannot link a web address within a post, either.  A different error message pops up.

Google Chrome.  Microsoft Windows 10.  Two different Dell laptops.  I think the details were posted above.

Link to comment
Share on other sites

  • Administrators

OK guys, I need as much info as possible to figure this out. Until I can duplicate the issue, I can do nothing.

  • Is anyone experiencing these issues on any OS other than Windows? What version of Windows are you using?
  • Has anyone experienced the issue on any mobile device?
  • When did it start for you, as precisely as possible.
  • What browser are you using?
  • Any security admins/plugins installed on your browser? Any security settings beyond the default settings?
  • What, if any firewall/security software are you using on your computer?
  • Please describe, in as much detail as you can, the problems you are experiencing.
  • Does anything on your end alleviate the problems?

Please send me your answers, along with any other info you feel might be helpful, via private message. I can’t fix an issue like this without your help. Thanks. 

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share

  • Please Donate To TBS

    Please donate to TBS.
    Your support is needed and it is greatly appreciated.
×
×
  • Create New...