Shoutbox

Well I was using the official Playstation forums and someone asked me how to put an image in their signature.

I told them to use (yes - the PS forums allow html):
<img src="http://www.externalserver.com/folder/image.extension">


He, being a newbie, thought I meant to use that EXACT code. He put it in and now a java pop-up appears whenever a page with that tag is viewed .

It appears to work here, too, using the [img] tags.
[img]http://www.externalserver.com/folder/image.extension[/img] (Edited by WDZ)


This has been test on:
Lithium (PS forums)
Mybb (these forums).



WDZ - if you get a chance you might want to fix this on the Plus! forums
Chris Boulton - you may want to fix this for everyone else.

quote:

---

Originally posted by blade
He put it in and now a java pop-up appears whenever a page with that tag is viewed

---

Uhh... it just looks like a standard HTTP login prompt... not that unusual... I've seen it here a number of times. The mods just remove any image that requires a login.

There's really no way to prevent such images from being linked to.

I think this is somewhat impossible to fix. However this does not cause any harm (I think), but some annoying.

Edit: Ok, unless it says, you need to log in to the board again

/sdoh

Well some newbies could click "ok" and be redirected to the site's homepage or something. It's a very up-front way of someone advertising.


And it could be fixed by limiting the use of image tags to "gif" "jpeg" "jpg" "bmp" "png" or something like that (though that would mess with the random image scripts ).

quote:

---

Originally posted by blade
And it could be fixed by limiting the use of image tags to "gif" "jpeg" "jpg" "bmp" "png" or something like that (though that would mess with the random image scripts ).

---

actually, it can't... if you need permission to view those, that popup will also appear.

quote:

---

Originally posted by blade

And it could be fixed by limiting the use of image tags to "gif" "jpeg" "jpg" "bmp" "png" or something like that

---

They still need login :/

quote:

---

Originally posted by WDZ

There's really no way to prevent such images from being linked to.

---

Apart from the obvious sniffing any provider that does them out and banning hotlinking to their site from here, wouldn't work though, one would always be missed, although it could act as "damage limitation" and decrease the odds of it happening

quote:

---

Originally posted by blade
And it could be fixed by limiting the use of image tags to "gif" "jpeg" "jpg" "bmp" "png" or something like that (though that would mess with the random image scripts ).

---

Uhhm... no.

Click: http://shoutbox.menthix.net/images/auth.jpg

quote:

---

Originally posted by WDZ

quote:

---

Originally posted by blade
And it could be fixed by limiting the use of image tags to "gif" "jpeg" "jpg" "bmp" "png" or something like that (though that would mess with the random image scripts ).

---

Uhhm... no.

Click: http://shoutbox.menthix.net/images/auth.jpg

---

Well it's your choice I guess
And ya - I forgot about protected images

(and 2u2)

quote:

---

Originally posted by blade

Well it's your choice I guess

---

He said "Uhhm...No" because it wouldn't work, not because it's his choice.
You need authorisation for the server, and any file on the server. Doesn't matter if it's a .exe or .gif. You need a username and password

quote:

---

Originally posted by Anubis

He said "Uhhm...No" because it wouldn't work, not because it's his choice.

---

I know, but there are other things he could do (blacklist servers for one)

quote:

---

Originally posted by Anubis

You need authorisation for the server, and any file on the server. Doesn't matter if it's a .exe or .gif. You need a username and password

---

I know - I forgot