you are viewing a single comment's thread.

view the rest of the comments →

[–]bynarie2018 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (9 children)

You guys are on the right track, but u need to LOOK AT THE CODE. Do you not realize everything on here goes to reddit? And, out of allllllll of the places to have a server u pick linode... why..? I really admire the work, but this website REALLY needs work and your code needs cleaned up..... But whatver

[–]magnora7[S] 3 insightful - 1 fun3 insightful - 0 fun4 insightful - 1 fun -  (8 children)

Do you not realize everything on here goes to reddit?

It doesn't though. There might be some service that accesses reddit, but we've been working on the code 6 months to eliminate these things. What are you talking about specifically, so we can fix it?

What's wrong with linode?

If you want the site to improve then show me where the problems are specifically and explain why, so we can fix it

[–]bynarie2018 5 insightful - 1 fun5 insightful - 0 fun6 insightful - 1 fun -  (3 children)

u should put a line in hosts file that reads 127.1 that way is blocked. I do like the idea of putting a mining script on the site.. I did some testing on the server directly(went around cloudflare) and it has some issues, specifically with the SSL cert. You have Lets Encrpyt and Comodo. theres an entry point. And with linode your probably renting a vps, linode will shut you down. I do honestly think u guys did a great job cloning reddit, but run kali and pen test it... youll see what im talking about.

[–]d3rr 3 insightful - 1 fun3 insightful - 0 fun4 insightful - 1 fun -  (1 child)

Thanks for the feedback. I like your blocking idea, we'll do that.

How did you find the server ip? So Comodo certs are considered to be particularly insecure/compromised? One other user has brought that up too.

Can you recommend a Linode alternative? We are ready to migrate hosts at any time if we need to.

[–]bynarie2018 3 insightful - 1 fun3 insightful - 0 fun4 insightful - 1 fun -  (0 children)

Comodo is fine... But you have Lets encrypt installed directly on the actual server its showing me. 2 SSLs != good... I have messaged magnora, told him the IP, and everything. Dallas TX linode. Hostname... All that... Im not here to harm, here to help.

[–]magnora7[S] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

Thanks for the feedback, we'll have a look at this stuff now that you've pointed it out. /u/d3rr check this out

[–]bynarie2018 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (3 children)

Sorry, I wasnt trying to be rude... Oh, one more thing; make sure the php files cannot be downloaded unparsed.. Execute only mode.

[–]magnora7[S] 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (2 children)

/u/d3rr also this

[–]d3rr 1 insightful - 1 fun1 insightful - 0 fun2 insightful - 1 fun -  (1 child)

this one I don't know about. we don't have any php that I'm aware of. I doubt we're serving any source code but I'll do some tests.

[–]magnora7[S] 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

Yeah I didn't think we had any php either. The first one seems legit though