Cycling UK Forum

Richard Fairhurst wrote: ↑5 Jan 2022, 7:09amThe Tapatalk nagware is back when accessing the forum from a mobile browser - not sure if there’s anything you can do to remove this.

Oops, forgot about that. Will disable it again.

Done

If you send me the DOCX file I can convert it into an image for you: ajcartmell@fonant.com

The Forum was updated to 3.3.5 on 4 Jan 2022.

Arrgh... the potential problems of re-using an old notice! 11:00 not 23:00

Sorry, all, performed a cleansing server reboot and the Sphinx search daemon failed to restart.

Should all be working again now, and the search should now survive a server reboot next time.

Just checked the Forum settings, and auto-prune is not enabled for the Women's Cycling Interests board.

But I agree that it looks like posts are being deleted as time progresses. I'll investigate further.

gom wrote: ↑12 Dec 2021, 8:32pm Is there anyway to hide or ignore particualr threads?

No, phpBB doesn't have any way to ignore individual threads.

You can mute all posts from particular users, by clicking on their username and then "Add foe".

And the resulting display with BBcode on:

Bullets:

• Item one
• Item two
• Item three

Numbered:

1. Item one
2. Item two
3. Item three

Roman numerals:

1. Item one
2. Item two
3. Item three

Letters:

1. Item one
2. Item two
3. Item three

Here are the BBcodes for some example lists:

Bullets:

[list][*]Item one[*]Item two[*]Item three[/list]

Numbered:

[list=1][*]Item one[*]Item two[*]Item three[/list]

Roman numerals:

[list=i][*]Item one[*]Item two[*]Item three[/list]

Letters:

[list=a][*]Item one[*]Item two[*]Item three[/list]

Sounds like it was a problem with the Let's Encrypt certificate chain, but glad to hear that the update fixed the issue.

PDQ Mobile wrote: ↑3 Nov 2021, 12:31pm Thank you for your reply.
I am not sure what one can do, apart from changing password?

Exactly that: all you can do is change your password. Stop using the one that Apple is telling you is compromised.

PDQ Mobile wrote: ↑3 Nov 2021, 12:31pm This is a weakness in the Forum?
Or just my weak password?

It's nothing to do with the Forum, the message is from your iPhone warning you that the password you use for the Forum has been compromised. Either because you use the same password somewhere else, or because someone else uses the same password.

PDQ Mobile wrote: ↑3 Nov 2021, 12:31pm Ps. It seems to me that the compromised passwords site is a security risk in itself?

No, because the compromised passwords lists are not exposed by that site.

The compromised passwords lists are completely public, if you know where to look. If your password is on one of those lists, associated with your email address or username, then hackers will be using it to try to get into things. The site merely provides a quick and secure way to check if your password appears in leaked lists. If it does, then the only thing to do is to stop using that password for anything.

PDQ Mobile wrote: ↑3 Nov 2021, 12:31pm I put in my password to an unknown site?
Surely that's not wise at all?

There is information on the https://haveibeenpwned.com/Passwords page explaining how the password you type in is kept completely private. It's a well-trusted site, run by Troy Hunt who is a Microsoft Regional Director.

But if you're in any doubt, you're correct: don't type any of your own passwords anywhere you're not sure about. Apple has already checked your password against a similar list, which is why you got that popup warning.

More information about this message:

https://macresearch.org/this-password-h ... data-leak/

Looks like your mobile browser is checking the passwords you are using against known-leaked password lists.

It has found your Forum password in one of the leaked password lists, and is recommending that you change your password because of that.

You can double-check whether your password is already known to hackers using this website:

https://haveibeenpwned.com/Passwords

If you use the same username and password on several sites, you should change the passwords: ideally using a different password for each separate site.

To remember all these passwords, do one of:

• Write them down in a notebook kept near your computer.
• Use the Password Manager built into your browser
• Use a dedicated password manager like BitWarden (https://bitwarden.com).

Note: perhaps the most important password of all is the one protecting your email account. Because if someone can guess that, they can potentially reset your passwords everywhere else by asking for password reset emails.

I would say those links are just spam, they're not pretending to be a bank website or anything like that. My guess is that they're just something random to paste into a message so that it looks like it might have useful links in it.

But, if in doubt about dodgy-looking link, report the message explaining your worry.

I'm not clear what the problem is?

The URLs posted were:

https://100001.onl/ (redirects to https://100001.uno/)
https://1921681254.mx/ (redirects to https://1921681254.one/)

which are pages describing how one might log into a router that has an admin interface on those IP addresses. They are irrelevant, but I can't spot anything malicious about them.

1. The plagiarist poster has been banned.
2. Yes, because we can still see which messages they posted (if their account is deleted all their posts will become anonymous).
3. Reports of possible abuse are indeed helpful, thank you. Offending posts are not deleted, they are archived.