You're point is valid. Google blacklists a site, and that is picked up by browsers as a assist to users. I guess the main problem is that with something like a signature that is auto-included in every post, unless you actually check that site continuously you aren't going to know it gets picked up on a blacklist. I suppose the posting software could do a query on any links contained in a post (including any auto-attachments like signatures) and place any bad results in a moderation queue, but who is volunteering to monitor that?

 

scott s.

.

At any rate as I said above, had I known there was a problem here I would have been more than happy to remove the image.

 

Ed, you don't need to be defensive or accept any responsibility for this. Someone at your VA does or at least needs to acknowledge that someone is creating pages or using scripts that Google alerted on. You are not responsible.

Hi everyone,

 

Yes, unfortunately the Phoenix VA site came under attack and the tech team has been working to clean affected files, patch the software and return the site to full functionality. In the mean time, Google blacklisted the phoenixva.org site which has generated the warning messages everyone has been seeing. The Phoenix VA tech team is continuing to monitor the site while conducting a forensic analysis in an effort to identify the responsible parties.

 

The areas of the site that were compromised included some php files within our community forums. As best we can tell the attack took advantage of an exploit within the community forum software we use. The compromised code then created a hidden redirect within most of the javascript files on the site.

 

There does not appear to have been any concern related to images other than the blacklist message which applies to the entire phoenixva.org domain and all files on it. The folks here on Avsim were not at risk from the Phoenix issues at any time, and Tom's action to remove Ed's image hosted by Phoenix was enough to block the blacklist message. As far as any link or issues related to Flightsim.com are concerned, we don't have any information on that.

 

If there are any other Avsim members using their Phoenix VA generated signature images, those images should probably be removed from your Avsim profiles for the next couple days until we can be sure all clean up efforts are complete and Google has removed the blacklist status.

 

If there are any other questions or concerns related to the issue, please direct them to me via email at [email protected] and I'll do my best to get answers for you. Due to the ongoing investigation we cannot divulge any specific details about the exploit at this time.

 

Thank you very much for your understanding.

Hi everyone,

 

Yes, unfortunately the Phoenix VA site came under attack and the tech team has been working to clean affected files, patch the software and return the site to full functionality. In the mean time, Google blacklisted the phoenixva.org site which has generated the warning messages everyone has been seeing. The Phoenix VA tech team is continuing to monitor the site while conducting a forensic analysis in an effort to identify the responsible parties.

 

The areas of the site that were compromised included some php files within our community forums. As best we can tell the attack took advantage of an exploit within the community forum software we use. The compromised code then created a hidden redirect within most of the javascript files on the site.

 

There does not appear to have been any concern related to images other than the blacklist message which applies to the entire phoenixva.org domain and all files on it. The folks here on Avsim were not at risk from the Phoenix issues at any time, and Tom's action to remove Ed's image hosted by Phoenix was enough to block the blacklist message. As far as any link or issues related to Flightsim.com are concerned, we don't have any information on that.

 

If there are any other Avsim members using their Phoenix VA generated signature images, those images should probably be removed from your Avsim profiles for the next couple days until we can be sure all clean up efforts are complete and Google has removed the blacklist status.

 

If there are any other questions or concerns related to the issue, please direct them to me via email at [email protected] and I'll do my best to get answers for you. Due to the ongoing investigation we cannot divulge any specific details about the exploit at this time.

 

Thank you very much for your understanding.

Thanks for clarifying in a very professional manner. I wish you good luck with restoring the web site. It's unfortunate that there are people who want to damage and make unpleasant our civilized and modest hobby.

Before adding a link we might consider if it's really necessary. The more links the greater the risks surely?

yes, i know that I have 2 signatures below that link back to TSViewer.com, but what ever happened to only allowing .JPG's and they not be linked back to another site? Just a picture. IF that picture contains a website, remember what it is, and physically go type it in if you want to look at the site!!

 

If you want to put a Phoenix VA signature bar on your posts, just make a .JPG with the website on it, host it through imageshack or photobucket and do it that way.

 

I can make signature bars all day, they are simple.

This is the reason why any signature I use I always host myself through photobucket or similar.

Avoids anything happening to the image due to unforeseen circumstances.

 

Even if my VA offers signatures, I would still save it and upload it to a personal source on the net.

 

 

Sent from my iPhone...typing errors imminent

I cannot help but feel I am being held accountable for something I did not know existed or could happen. That may not be what is intended but that is the way it is coming across. It was one signature block, some people here have two or more. It had one link and others here do the same and put links in there's. I could have hosted the image but that would have made it static instead of updating live the way it was designed. I also suppose it can be argued no signatures are really necessary except for information required for tech support.

 

I don't know if you guys are trying to help me or make me fill guilty but I can say that I am feeling guilty at this point. I do greatly appreciate the offer to make me a signature, that is very kind; however, it would be static and I could do that and would not want to bother anyone with a task I can do myself. That would be an abuse of your kindness. At any rate fact is I did not know this could happen. I did not know it was possible. I do not want to debate or argue over something that is all new information to me. I am not a computer guy, my degree is in the Humanities. It is probably best if I just step away for a while as I am feeling a bit unwelcome right now. :(

I cannot help but feel I am being held accountable for something I did not know existed or could happen.

I don't know if you guys are trying to help me or make me fill guilty but I can say that I am feeling guilty at this point.

I completely understand and have no hurt or invigorated feelings. Few people, if any, are going to be permanently angry or seriously offended at this incident (your first—and completely unintentional), especially since you have already clearly and logically explained the circumstances and made clear your harmless intentions.

 

It is quite natural for one to feel overly guilty or magnify his or her degree of wrongdoing / role in a situation that was clearly unforeseeable and unpreventable, so don't continue stressing over or worrying about it!

 

Have a great year!

I cannot help but feel I am being held accountable for something I did not know existed or could happen. That may not be what is intended but that is the way it is coming across. It was one signature block, some people here have two or more. It had one link and others here do the same and put links in there's. I could have hosted the image but that would have made it static instead of updating live the way it was designed. I also suppose it can be argued no signatures are really necessary except for information required for tech support.

 

I don't know if you guys are trying to help me or make me fill guilty but I can say that I am feeling guilty at this point. I do greatly appreciate the offer to make me a signature, that is very kind; however, it would be static and I could do that and would not want to bother anyone with a task I can do myself. That would be an abuse of your kindness. At any rate fact is I did not know this could happen. I did not know it was possible. I do not want to debate or argue over something that is all new information to me. I am not a computer guy, my degree is in the Humanities. It is probably best if I just step away for a while as I am feeling a bit unwelcome right now. :(

Not really sure if you missed Tom's post, by chance.

Ed, you don't need to be defensive or accept any responsibility for this. Someone at your VA does or at least needs to acknowledge that someone is creating pages or using scripts that Google alerted on. You are not responsible.

Seeing as he is the administrator of this site, hopefully that helps. In the post after his, Chuck acknowledged what happened, so really, you don't have much to worry about.

I am glad that this matter is resolved.

 

Everythings cool Edward and no one is trying to lynch you. You are not blamed. Since this is resolved, I am locking the thread.

 

Happy New Year Everyone!

 

Kind regards,