|
Dear administrator
I am not sure this is the right place, but could you delete my account? I do not need
this account any more.
modified 17-Sep-18 21:01pm.
|
|
|
|
|
Go to Your Settings[^] , select the Privacy tab, and choose the relevant option to close your account.
|
|
|
|
|
I have 143 "critical" messages in the Bitdefender message board.
"Codeproject has tried an SQL-Injection attack. We have blocked the connection to avoid, that the attacker gains access to sensitive data"
About the situation... it is not a big deal. Add CP to the whitelist and problem solved.
But I thought I should tell you, just in case.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
could you provide any details as to the page or code that is 'attacking'.
While I am sure that our code doesn't do this, it may be a something pulled in with a supporting js library, or you have something on your system injecting something, in either case it is something we need to address and quickly.
"Time flies like an arrow. Fruit flies like a banana."
|
|
|
|
|
First of all, sorry about the delay.
I am sure CP is not the problem. Previous antivirus never complained about.
About the messages... That's all what the antivirus gave me. I can't see anything else. I am trying to solve another bug on their side and I am in the process of re-installing and preparing an Email to them by opening an "issue" ticket.
If I manage to find any more info I will contact you as soon as I can.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
On the other hand...
I thought SQL-Injection is only dangerous for Web-Sites with databases on the background, not for the user surfing a site. Or am I missing something?
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
SQL Injection is only one form of injection attack, there is also XSS injection, and some other less common ones: What are Injection Attacks? | Acunetix[^]
Not all of these are anything to do with the site, some can be performed via browser extensions for example.
Sent from my Amstrad PC 1640
Never throw anything away, Griff
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
AntiTwitter: @DalekDave is now a follower!
|
|
|
|
|
ok...
But the messages were about "SQL-Injection" 100% sure.
pity is that solve the other bug I had to uninstall and remove the device from the list. So I have them no more.
I'll be checking next days and probably post a screenshot if it happens again
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
How would an antivirus spot SQL Injection, given that is normally instigated from the server code, not the client? Very strange ...
Sent from my Amstrad PC 1640
Never throw anything away, Griff
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
AntiTwitter: @DalekDave is now a follower!
|
|
|
|
|
I know... that's what bothers me. And why I said "false positives", it makes not really sense for me.
I edited my rant having the messages in an opened window.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
You're not suggesting an anti-virus manufacturer would report spurious messages to make people feel more protected, are you?
cheers
Chris Maunder
|
|
|
|
|
No more than a car manufacturer would program their cars to recognise an emissions test ...
Sent from my Amstrad PC 1640
Never throw anything away, Griff
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
AntiTwitter: @DalekDave is now a follower!
|
|
|
|
|
Phew. So we're safe then!
cheers
Chris Maunder
|
|
|
|
|
Maybe once or twice a year... it happened again. See my answer to Mathew
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Hi Mathew... it happened again.
I was just editing a message in the spam forum to add "- gone" to the subject as I always do.
URL: New Discussion[^] (only the ad on Bob's right side) and it is nothing suspicious (one is: Take our 3 minutes survey...[^] and the other is files converter[^] )
the AV jumps when I hit "post message" or "enter" to publish. Several reloads brought nothing. If you need translation of the messages tell me.
I'll try later again
EDIT: I was able to edit the messages before [^] and after[^] it without problems. Only that one is annoying me.
M.D.V.
If something has a solution... Why do we have to worry about?. If it has no solution... For what reason do we have to worry about?
Help me to understand what I'm saying, and I'll explain it better to you
Rating helpful answers is nice, but saying thanks can be even nicer.
|
|
|
|
|
Dear Colleagues,
Today I've visited my professional profile page and noticed that the biography I've posted is missing from my profile. Recently, I've made no change to my biography, but the biography passage I've posted suddenly disappeared from my profiles page.
Can you help me out to correct this ?
Thanks a lot in advance.
|
|
|
|
|
I'd so much appreciate if someone will help me out to recover my biography texts. It's an urgent question.
|
|
|
|
|
Give them a chance! The staff are all in Canadia, and as such are on Toronto Time: GMT-4, so it's currently 06:54 at CodeProject. Give them a couple of hours to get into the office, have a cup of , an so on!
Sent from my Amstrad PC 1640
Bad command or file name. Bad, bad command! Sit! Stay! Staaaay...
AntiTwitter: @DalekDave is now a follower!
|
|
|
|
|
Thanks a lot. I'll be patiently waiting for the problem to be resolved. Also, I've manually restored my biography text, *BUT*, I'm still wondering why my original biography text and time-zone have been unexpectedly modified.
|
|
|
|
|
Can anyone help me out with this problem ? I still have not received any replies from CodeProject's Team. As far as I know, it's already 11:46 in Toronto, but no one has replied.
|
|
|
|
|
Works for me:
Quote: Arthur V. Ratz, 38 years old, C++ software developer, system analyst and network engineer graduated from L’viv State Polytechnic University and attained his Computer science and Information technology master’s degree in January 2004. Since the middle of 2005 senior IT-pros. His professional career began as a financial and accounting software developer in DPLKB company’s small local branch in L’viv. His professional interests include C/C++ programming, windows platform applications development using Win32API, parallel programming and multithreading, SQL relational database development, PHP and JavaScript web development, algorithms, system analysis, distributed information systems, computers networks design and analyzing, Windows Server and Linux administration, cloud computing, IoT, system security, technical writing and science publications etc. Arthur Ratz published his first article at CodeProject.com in June 2015.
Or are you saying you've added something that's now missing?
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
Thank you very much for your reply, but I've updated the same biography text after I've encountered that it was missing from my profile. And, also, at the present moment, I see that someone has logged onto my profile from a different device. Also, if you've monitored my own activity, you would notice that the time-zone for my profile changes to UTC+2 Jerusalem every time I set the correct time zone. It means that someone else is currently logged on my profile and manually changes the time-zone and other preferences.
Specifically, I'm so much afraid that my account will be unlawfully deleted by someone else who's presently logged in.
I've sent two e-mail messages to Chris Maunder and Sean Ewington with my question about account security issues, but have not received any replies yet.
Can you help me out to protect and secure my account at CodeProject I so much treasure.
I'd kindly so much appreciate.
|
|
|
|
|
I'm not staff, so I don't have access to monitor your activity or help you secure your account.
If you suspect someone else has logged in to your account, you should probably change your password.
I haven't seen the link to see which devices I'm logged in from yet. Does it have the option to log out all other sessions?
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
Sorry for giving this question, but I've already changed the password for my account the number of times, but useless. Also, I've many times logged out all other sessions, but they still reappear. I don't know what to do at this point.
|
|
|
|
|
And also, can you tell the stuff about this problem and my question ?
|
|
|
|