POLL - Song Title HeronSong Title CHAT thread 1s...Song Title ENTRY thread 1...Poll - Days out - 18th-25...Windows 10 19H1 is headin...POLL - SchoolSchool - Weekly Comp Entr...SCHOOL - Weekly comp Chat...Entry Thread - Days out -...POLL - DoorwaysChat Thread - Days out - ...1957 Ferrari California 2...Doorways - Entry Thread w...Anything Goes Poll 4-11th...Anything Goes - Chat Thre...

Author Topic: PhotoRadar Security issue (possibly important)  (Read 2293 times)

Offline Jonathan

  • Hero Member
  • *****
  • Posts: 1273
    • PeopleByRyan
PhotoRadar Security issue (possibly important)
« on: September 01, 2009, 09:32:20 PM »
Ordinarily I'd punt this over to the site admins and they would tell me why I don't need to worry.  For "obvious" reasons I'm not going to do that......

Anyway I turned on the Mac in the Gallery today.  It did some software updates and all was cool.  Then it chucked up an alert.  Apparently the PubSub Agent was requesting access to my keychain.  Alerts like this are reasonably common in OS X after an update.  If an app accesses the keychain (and lots do) and it changes then it has to be reauthorised.  Ordinarily I'd just hit "always allow" and that would be it.

But the keychain element it wanted access to is beta.photoradar.com.  Now Google says that PubSub updates are to do with syncing MobileMe and RSS feeds which all seems pretty cool.  But I don't have a MobileMe bookmark for PR and have never subscribed to their RSS.  (Or any RSS on this particular machine)

It's entirely possible there's nothing to worry about but there's a small chance there's something a bit iffy about their site pushing RSS updates or something.  It appears that something is polling the PR site for updates.

If you're still on PR you may want to check any dodgy incoming traffic or suspicious phone homes.  TBH I doubt the team have the skills or the inclination to do anything like this but it's ever so suspicious that of all sites this is the one that popped up.


It's Guest's round

Offline greypoint

  • Hero Member
  • *****
  • Posts: 1041
Re: PhotoRadar Security issue (possibly important)
« Reply #1 on: September 01, 2009, 09:51:02 PM »
If only I understood that I might be worried :o

Offline Trickee

  • Hero Member
  • *****
  • Posts: 655
    • Mysite
Re: PhotoRadar Security issue (possibly important)
« Reply #2 on: September 01, 2009, 10:16:42 PM »
pubsub agent? is that someone that sells pubs?--it does read very jargonistic but my understanding is that its a security issue form that site, that they won't have a clue about and won't know how to fix it and could annoy many of its new shiny members :)

picsfor

  • Guest
Re: PhotoRadar Security issue (possibly important)
« Reply #3 on: September 01, 2009, 11:10:12 PM »
not just annoy members - it could lead to you having your computer hacked into remotely or a nice little prgoram being deposited that sends all your critical stuff to some one for their benefit.

I think the word amateurs is a little too complimentary for the crowd they have working over there.

Hence i had to ask what is going on - not happy with what i saw and as this place is doing a darn good job of replacing DCM, don't see a need to bother!

Offline Peter Jackson

  • Newbie
  • *
  • Posts: 20
    • Peter Jackson Photography
Re: PhotoRadar Security issue (possibly important)
« Reply #4 on: September 02, 2009, 12:31:32 AM »
Ordinarily I'd punt this over to the site admins and they would tell me why I don't need to worry.  For "obvious" reasons I'm not going to do that......

Anyway I turned on the Mac in the Gallery today.  It did some software updates and all was cool.  Then it chucked up an alert.  Apparently the PubSub Agent was requesting access to my keychain.  Alerts like this are reasonably common in OS X after an update.  If an app accesses the keychain (and lots do) and it changes then it has to be reauthorised.  Ordinarily I'd just hit "always allow" and that would be it.

But the keychain element it wanted access to is beta.photoradar.com.  Now Google says that PubSub updates are to do with syncing MobileMe and RSS feeds which all seems pretty cool.  But I don't have a MobileMe bookmark for PR and have never subscribed to their RSS.  (Or any RSS on this particular machine)

It's entirely possible there's nothing to worry about but there's a small chance there's something a bit iffy about their site pushing RSS updates or something.  It appears that something is polling the PR site for updates.

If you're still on PR you may want to check any dodgy incoming traffic or suspicious phone homes.  TBH I doubt the team have the skills or the inclination to do anything like this but it's ever so suspicious that of all sites this is the one that popped up.


Hmmmm........That starts to make more sense now Jonathan, ever since I have been logging onto PR I receive a warning message from Sophos Firewall that the site is attempting to access my computer, after hitting "block all activity" it allows me in. Ordinarily that would be an end of the matter as once a site is blocked, it is blocked, unless something changes as I understand. However it would appear that something on PR is changing as I keep getting the firewall alert each and every time I access the site, I had put it down to my firewall being a little over zealous, which it can be on occasions, now it looks like there is possibly more to it.

I think I'll just stop visiting there to be on the safe side.
Oh Lord, please help me to be the person that my dog thinks I am.

Offline Jonathan

  • Hero Member
  • *****
  • Posts: 1273
    • PeopleByRyan
Re: PhotoRadar Security issue (possibly important)
« Reply #5 on: September 02, 2009, 07:58:18 AM »
it does read very jargonistic

OK, I was trying not to be alarmist.  I'll simplify....... :)

It's possible that something on the PR site is retrieving personal data from your machine.  It's possible this is happening even if you don't visit the site any more (i.e. it may have dropped some code into the browser such as a bookmark or RSS).

TBH I don't think it is much to worry about - I just installed Little Snitch and went for a quiet browse on the site (OMG - things are worse than I thought!!!) and it seems reasonably happy.  But Peter's results may back mine up.  If it was put there by the site developers then it's a little dodgy.  If it's something piggybacking on their code to access your machine then it's well dodgy.

But then, I've been warned about even discussing security with anybody.  What's that black van doing outside........?  :legit:

ETA: very enlightening browsing the PR site with a couple of freeware dev tools running.  Typical page has 20 - 30 coding errors.  Most links (and there are a lot of links) have a couple of warnings about sloppy code and nearly all have a severe warning about unsafe Javascript.  It seems some of the Javascript is trying to access the wrong domain which actually looks very dodgy.....
« Last Edit: September 02, 2009, 08:02:40 AM by Jonathan »
It's Guest's round

Offline wendoureecat

  • CC Regular visitor
  • **
  • Posts: 69
    • Art Thru A Lens
Re: PhotoRadar Security issue (possibly important)
« Reply #6 on: September 02, 2009, 09:04:27 AM »
Must admit havent ventured back to PR site for a while nor the DCM site. The DCM site was one of the more user friendly forums with some great characters and must confess although I dont post much have learnt a great deal from reading the forum. The PR site now and yes I know it is still a beta site seems to have more holes than the Albert Hall in it and I prefer a more user friendly forum........I dont want to get an IT degree just to post a pic. they really need to get their backside into gear with it. My congrats and thanks though goes to Lurkalot as this site is better than them both with again great characters to grace the threads.

Offline Sarasocke

  • Hero Member
  • *****
  • Posts: 680
    • my flickr
Re: PhotoRadar Security issue (possibly important)
« Reply #7 on: September 02, 2009, 09:34:31 AM »
Must admit havent ventured back to PR site for a while nor the DCM site. The DCM site was one of the more user friendly forums with some great characters and must confess although I dont post much have learnt a great deal from reading the forum. The PR site now and yes I know it is still a beta site seems to have more holes than the Albert Hall in it and I prefer a more user friendly forum........I dont want to get an IT degree just to post a pic. they really need to get their backside into gear with it. My congrats and thanks though goes to Lurkalot as this site is better than them both with again great characters to grace the threads.

I cannot agree more  :tup:
Carol aka Sarasocke 
My Gallery

Offline Bigbill

  • Full Member
  • ***
  • Posts: 159
    • Gigstills
Re: PhotoRadar Security issue (possibly important)
« Reply #8 on: September 02, 2009, 12:24:20 PM »
Hewwo from Chilly Sheffy.

Yahhhhh,have to agree with the above,Lurky deserves a huge pat on the back for getting this place up and running,i just hope it goes on and on and develops into something huge,,,,,i never would have said that in DCM,and ive never seen PR,and having read the opening bit of this thread i wont be rushing over there,despite all the glee though,i think its very unfortunate that DCM has gone the way it has.

Shine On

Offline greypoint

  • Hero Member
  • *****
  • Posts: 1041
Re: PhotoRadar Security issue (possibly important)
« Reply #9 on: September 02, 2009, 12:32:48 PM »
A site/forum is simply the sum of it's members [and the hard work and generosity of it's owner!] so if everyone who's an active member now remains active here and others continue to join there's no reason why it can't continue to be better than those commercial ones we won't mention :D ::) :-X

Offline John Doyle2

  • Full Member
  • ***
  • Posts: 108
Re: PhotoRadar Security issue (possibly important)
« Reply #10 on: September 02, 2009, 04:33:31 PM »
 I stopped visiting P.R. Awhile back. Still visiting DC Forums though and hope that it will continue to function! Yes, Lurk has created a good home here. :tup:

Hybridphotog

  • Guest
Re: PhotoRadar Security issue (possibly important)
« Reply #11 on: September 02, 2009, 06:18:29 PM »
A site/forum is simply the sum of it's members [and the hard work and generosity of it's owner!] so if everyone who's an active member now remains active here and others continue to join there's no reason why it can't continue to be better than those commercial ones we won't mention :D ::) :-X
At least the admin here listen. They also seem to actually do something, as opposed to just collecting dust and a monthly wage. ;)

Offline Mick

  • I've got the latest Canon - 4 rings, double oven and eye level grill! And HD video!
  • Administrator
  • Hero Member
  • *****
  • Posts: 2527
  • I really, really hate lawn mowers.
    • Camera Craniums
Re: PhotoRadar Security issue (possibly important)
« Reply #12 on: September 02, 2009, 06:26:19 PM »
A site/forum is simply the sum of it's members [and the hard work and generosity of it's owner!] so if everyone who's an active member now remains active here and others continue to join there's no reason why it can't continue to be better than those commercial ones we won't mention :D ::) :-X
At least the admin here listen. They also seem to actually do something, as opposed to just collecting dust and a monthly wage. ;)

I try Dave, I try.  ;) My web dev skills aren't up to much though.  Still learning as I go.  :tup: 

Thanks to all for the kind words about CC.  It really was a case of trial and error to get it to this stage, believe me.  :D
Thank You, "Guest" For Reading This Post.

My Gallery
Tinyportal.net Running SMF 2.0.13 / Tinyportal 1.0
Guitarist Guild Running SMF 2.0.13 / Tinyportal 1.2R
The Garden Machinery Forum Running SMF 2.0.13 / Tinyportal 1.2R

Offline Damon

  • Full Member
  • ***
  • Posts: 229
Re: PhotoRadar Security issue (possibly important)
« Reply #13 on: September 02, 2009, 06:33:06 PM »
A site/forum is simply the sum of it's members [and the hard work and generosity of it's owner!] so if everyone who's an active member now remains active here and others continue to join there's no reason why it can't continue to be better than those commercial ones we won't mention :D ::) :-X

This is my one and only site & i`m here to stay. Even if i had time to spend thralling through various site`s i still don`t think i`d bother.
I can`t say enough how much i like this site & i`m very comfortable now. :)
Damon.

Offline Hinfrance

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 4955
  • Cake is good
    • Hinfrance
Re: PhotoRadar Security issue (possibly important)
« Reply #14 on: September 02, 2009, 09:12:04 PM »
I can't even sign on to PR. It says it doesn't recognise the name they set for me, it won't let me reregister and it won't let me change the moniker.

I see you've quit Mick.  :D
Howard  My CC Gallery
My Flickr
The theory seems to be that as long as a man is a failure he is one of God's children, but that as soon as he succeeds he is taken over by the Devil. H.L Mencken.

 

latest Posts

Subject Board Views/Replies Member Date & Time
xx POLL - Song Title International Weekly Comp Entries 167/3 Jediboy Last post September 15, 2019, 10:57:01 PM
xx Heron Wildlife Photography 86/3 jinky Last post September 15, 2019, 12:19:57 PM
xx Song Title CHAT thread 1st-8th September `19 International Weekly Comp Entries 809/36 jinky Last post September 13, 2019, 03:02:01 PM
xx Song Title ENTRY thread 1st-8th September `19 International Weekly Comp Entries 154/4 Jediboy Last post September 09, 2019, 03:08:08 PM
xx Poll - Days out - 18th-25th August 2019 International Weekly Comp Entries 298/7 Hinfrance Last post September 08, 2019, 07:17:09 AM
xx Windows 10 19H1 is heading your way. PC computer questions, tips and how to's 2761/35 Mick Last post September 07, 2019, 02:45:08 PM
xx POLL - School International Weekly Comp Entries 82/0 Jediboy Last post September 03, 2019, 12:02:14 PM
xx School - Weekly Comp Entry thread International Weekly Comp Entries 199/4 Jediboy Last post September 02, 2019, 10:39:51 PM