Community Forums

**Andy R** · 09-05-2011, 07:36 PM

We do NOT rent space to malicious sites and take these reports very seriously. If you get this error please post with your specific browser version (like 9.0.2) and if there is a box with a # sign in it, please right click and copy the URL from inside that box and paste it here. We need as much information as possible so we can report this to Google (the ad firm who provides our ads).

Francesca · 09-05-2011, 07:43 PM

Quote:

Originally Posted by Francesca

Hope you don't mind if a "Chrome" user asks a question...
This is all Greek to me, but-
Does that mean that IE is saying that THIS site is "renting space to a possibly malicious site"???

Francesca

Quote:

Originally Posted by DriVer

Short answer; No. I believe that there is a scripting error in one of the ads that is probably getting looked at right now. The Admin here works diligently to get these anomalies resolved.

Thanks!
My security software gives IRV2 an A-plus rating, and I haven't had any reason to doubt that assessment...
Sounds like my "Computer Tutor" advised me well when we talked about browsers!

Francesca

**NLOVNIT** · 09-05-2011, 07:44 PM

Quote:

Originally Posted by RustyJC

...This just started within the last day or two. Running Windows 7 with IE9.

Rusty

Although I'm running IE8, the Google ad block above the mission statement went from text only to graphics/animated graphics within the last couple days for me. I don't know if it's related to the # ad with the IE9 users that also just recently started, but thought I'd throw it out...JIC.

Lori-

DriVer · 09-05-2011, 07:52 PM

Quote:

Originally Posted by NLOVNIT

Although I'm running IE8, the Google ad block above the mission statement went from text only to graphics/animated graphics within the last couple days for me. I don't know if it's related to the # ad with the IE9 users that also just recently started, but thought I'd throw it out...

Lori, I have been seeing graphic based ads for the past 24 to 36 hours. I believe this to be different but normal.

http://ib.adnxs.com/if?enc=rkfhehSu1...dia_subtypes=1

This link resolves the "Google" PacMan Ad. There's also a Popeye Ad as well.

Attached below.
.

JimM68 · 09-05-2011, 08:13 PM

ie 9.02 & win 7. I got the cross scripting window for most of today. Am not getting it anymore.

Also noticing the google ads at the top are now Flash?
Some time aga, a camaro site I used to spend a lot of time on went all commercial and started getting those flash ads from google. Some of them were buggy and increased load times a lot. These flash ads generated a lot of hate and discontent over there.

RustyJC · 09-05-2011, 08:16 PM

IE9 Update version 9.0.2. The warning messages continue.

Rusty

DriVer · 09-05-2011, 08:18 PM

Quote:

Originally Posted by RustyJC

IE9 Update version 9.0.2. The warning messages continue.

Rusty - I concur ... it was woking OK there for about 15 minutes.

...... Now it's working again ...... Got to be a head scratcher for the tech guys. I hate it when that happens.

Wayne M · 09-05-2011, 09:10 PM

Cross scripting was also in IE-8. One of the ways stated to disable it was to go into "Tools" "Internet options" and there was a way in there to disable it.

I love Firefox. No ads here at all.

Edited:
I just verified my statement and you can also disable it in IE-9 if you so desire.
You may not want to turn it off after reading this, but the instructions are also below:
From Microsoft:

"Cross Site Scripting (XSS) is an attack which is emerging as a leading exploit against Web servers, surpassing buffer overflows as the most common exploit vector on the Web. They exploit vulnerabilities in Web applications to steal cookies or other data, deface pages, steal credentials, or launch more exotic attacks. In this attack, you might receive an email that contains a tampered website address. Once you click on the link, you are directed to a legitimate website that has been compromised to contain malicious content that can capture keystrokes and record your login and password."

"To turn off the XSS Filter:
•Follow the menu path: Tools -> Internet Options
•Select the Security Tab
•Select Custom level
•Scroll To The Bottom of the List.
•Click Disable XSS Filter"

One of the items that I like in Firefox, and I do not know if Safari, IE, Chrome, or other browsers have it, is the Web Of Trust (WOT) that let's you know the status of a web site. A good web site will have a "green" WOT circle and a bad one a "red" circle with other colors being yellow and orange. It's just a nice gauge to see if you want to get out of there real quick or not. When you Google a question, all the links will come up with a WOT indicator. Nice touch.

Be careful of any web site that you are not familiar with. The majority of them are safe, but there are some malicious ones out there. Hopefully your firewall and virus protection will keep you safe.

Oh! I also love my MAC - no viruses, so to speak.

Francesca · 09-05-2011, 09:34 PM

Thanks, Wayne!

You know, I did get a strange one this afternoon...
Another site I'm a member at NOT IRV2 sent me a P.M. notice.
When I clicked on the link like always, it took me to a "log-in" page.
This was a surprise, since I usually stay logged in at sites I'm currently using.
I was about to "log in" anyway when I got a Screamer Warning from my Security ware!
Naturally, I went "back to safety."
I then went to the site by my ordinary channel and found that I was in fact already logged in, as usual.
As it turned out there was a private message (from someone I know).
I responded to it and didn't think any more about the logging-in "confusion" until reading this thread...
Sounds like I may have dodged the kind of bullet you're talking about!

I guess I'd better send a heads-up to that other site...

Thanks, everybody!

Francesca

DriVer · 09-06-2011, 10:29 AM

I run the latest verion of NIS and it patches and updates itself on a 24/7 basis. It's been a good performer and no problems so far.

I have had to use Chrome to login into the web interface on my router. Although IE9 gives me a few fits, I still use it as my default browser. I had fewer issues with IE8.

Route 66 · 09-06-2011, 10:35 AM

Actually, I don't understand all I know about computers and I know very little.

Quote:

Originally Posted by RustyJC

With all respect, this sounds like something has changed on the site scripts, not IE9.

Rusty

sdennislee · 09-06-2011, 11:13 AM

MAC and Safari, none of these issues.

LibbyLA · 09-06-2011, 11:31 AM

Quote:

Originally Posted by sdennislee

MAC and Safari, none of these issues.

Not because your Mac is "safer", but because Macs are a relatively small part of the universe of computers and the bad guys go after the larger target, PCs.

liz

garym114 · 09-06-2011, 11:32 AM

It is a security feature in IE9. It modifies the page to prevent cross site scripting. Chrome doesn't even check the page.
IE9 is protecting you and you complain?
It does not indicate anything is malicious about the site, just that the potential exists and IE9 blocks it. If you go to Yahoo Sports a lot of their articles do the same thing.

"MAC and Safari, none of these issues." That is because Safari doesn't check for cross site scripting either.

Short explanation of XSS - Cross Site Scripting basically is a security vulnerability of dynamic web pages where an attacker can create a malicious link to inject unwanted executable JavaScript into a Web site.

IE9 and IE8 will check for this based on your security settings and let you know. What is wrong with that ???