SRB2 Message Board

SRB2 Message Board (https://mb.srb2.org/index.php)
-   General Discussion (https://mb.srb2.org/forumdisplay.php?f=51)
-   -   FYI y'all might wanna change your passwords (https://mb.srb2.org/showthread.php?t=42399)

fickleheart 02-24-2017 04:35 AM

FYI y'all might wanna change your passwords
 
(TL;DR is on the last paragraph)

https://blog.cloudflare.com/incident...re-parser-bug/

Cloudflare put out an incident report today regarding an issue with their parsers that would output unintended data on certain pages with script issues. Notably, HTTP POST bodies (which contain things like the password you send to a login page) and other such information was getting sent out where it shouldn't:

Quote:

It turned out that in some unusual circumstances[...] our edge servers were running past the end of a buffer and returning memory that contained private information such as HTTP cookies, authentication tokens, HTTP POST bodies, and other sensitive data. And some of that data had been cached by search engines.
Anything that uses Cloudflare (the MB does, for instance) or communicates with a site that does was potentially affected. The safest course of action is to change all your passwords, deauthorize and reauthorize any apps hooking into your social networking accounts (which creates new authentication tokens, since those are also vulnerable), and take other similar precautions with any other data you've sent over the web.

This has been a friendly PSA.

CobaltBW 02-24-2017 04:50 AM

I'm going to assume that this probably doesn't affect anyone who's been logged in automatically for at least a year?

Boo 02-24-2017 04:55 PM

Wow this is bad news, how can things get worse!
Well im going to change my password!


All times are GMT. The time now is 07:00 PM.

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2018, vBulletin Solutions, Inc.