General Chat

Top tip - using the Genes Reunited community

Welcome to the Genes Reunited community boards!

  • The Genes Reunited community is made up of millions of people with similar interests. Discover your family history and make life long friends along the way.
  • You will find a close knit but welcoming group of keen genealogists all prepared to offer advice and help to new members.
  • And it's not all serious business. The boards are often a place to relax and be entertained by all kinds of subjects.
  • The Genes community will go out of their way to help you, so don’t be shy about asking for help.

Quick Search

Single word search

Gift subscriptions

Genes Reunited gift subscription

Do you know someone interested in discovering their family history?

You can now buy a gift subscription to Genes Reunited so they can research their family tree.

Buy gift or redeem gift

Icons

  • New posts
  • No new posts
  • Thread closed
  • Stickied, new posts
  • Stickied, no new posts

cross site scripting

Page 0 + 1 of 3

  1. 1
  2. 2
  3. 3
  4. »
ProfilePosted byOptionsPost Date

eRRolSheep

eRRolSheep Report 27 Jan 2013 15:54

Is anybody else getting a cross site scripting (XSS) warning on this site at the moment?

Janet

Janet Report 27 Jan 2013 16:01

Yes I've just had it. -j

eRRolSheep

eRRolSheep Report 27 Jan 2013 16:03

could be totally innocuous but rather worrying nevertheless

Janet

Janet Report 27 Jan 2013 16:06

I get it regularly on 19c newspapers. Can you explain as I don't know what it means.-jl

eRRolSheep

eRRolSheep Report 27 Jan 2013 16:10

It is one of the most common hacking methods and can be used to "steal" private information such as passwords, sensitive data like banking details etc

Janet

Janet Report 27 Jan 2013 16:14

thanks-j

eRRolSheep

eRRolSheep Report 27 Jan 2013 16:19

If anyone wants to prevent cross site scripting, do the following:

1. Click on Tools and then "Internet options"
2. Click on the Security tab and then "Custom level..."
3. Under "Settings" scroll down to "Scripting" (near the bottom of the list)
4. Under that category scroll down to "Enable XSS filter" and make sure there is a dot next to "Enable"
5. Click Ok
done

eRRolSheep

eRRolSheep Report 27 Jan 2013 16:21

It is most likely being caused by an advertisement

Janet

Janet Report 27 Jan 2013 16:22

thanks again- j

eRRolSheep

eRRolSheep Report 27 Jan 2013 16:23

You're very welcome

AnninGlos

AnninGlos Report 27 Jan 2013 16:38

Errol If I click on tools (windows 7) I don't get an internet option. Any idea where else I should look.

Incidentally I have not had the cross site scripting on mine.

eRRolSheep

eRRolSheep Report 27 Jan 2013 16:44

Ann you need to click on the Tools menu in Internet Explorer.

If you are running Windows 7 then you are probably also runing Internet Explorer 9.

If that is the case, have a look towards the top right corner of Internet Explorer where there should be a little icon that looks like a cog.
Click on it and "Internet options" should be under that, then follow the instructions above

AnninGlos

AnninGlos Report 27 Jan 2013 17:13

thanks Errol, have to do it later as I use Firefox not IE. Thanks again.

eRRolSheep

eRRolSheep Report 27 Jan 2013 17:37

Hi Ann
XSS vulnerabilities are more an issue with IE and you should be ok with Firefox and your default settings

supercrutch

supercrutch Report 27 Jan 2013 17:41

I run McAfee on IE and it's always blocking content on GR.

eRRolSheep

eRRolSheep Report 27 Jan 2013 17:44

Same here supercrutch
I test various security software and McAfee picks up a lot of things on here - it is generally adverts.
Of course, a couple of options are to block images (pretty drastic) or use a whitelist

supercrutch

supercrutch Report 27 Jan 2013 18:03

As I pay to use this site I see no reason why I should have to read their advertisements so they all remain blacklisted :-D

eRRolSheep

eRRolSheep Report 27 Jan 2013 18:29

couldn't agree more - however as a paying member, you could always try asking for a cut of the advertising revenue.

MR_MAGOO

MR_MAGOO Report 27 Jan 2013 18:42

I use GR/ZA.....no ads at all...... :-D

eRRolSheep

eRRolSheep Report 27 Jan 2013 19:14

although you should still disable cross site scripting