What annoyed you today?Horizons ENTRIES 27/07...Canon EF L IS USM 500 f/4...STREET-ENTRIES-Weekly Com...STREET-CHAT-Weekly Comp 1...POLL for TIME OUTTIME OUT. Chat thread wee...TIME OUT. Entry thread w...Horizons CHAT thread 2...POLL -NUMBERS and / or LE...NUMBERS and / or LETTERS ...POLL Happiness is.......Nice houseHappiness is.... Entry Th...Happiness is.... Chat Thr...Drone

Author Topic: PhotoRadar Security issue (possibly important)  (Read 2474 times)

Offline Jonathan

  • Hero Member
  • *****
  • Posts: 1273
    • PeopleByRyan
PhotoRadar Security issue (possibly important)
« on: September 01, 2009, 09:32:20 PM »
Ordinarily I'd punt this over to the site admins and they would tell me why I don't need to worry.  For "obvious" reasons I'm not going to do that......

Anyway I turned on the Mac in the Gallery today.  It did some software updates and all was cool.  Then it chucked up an alert.  Apparently the PubSub Agent was requesting access to my keychain.  Alerts like this are reasonably common in OS X after an update.  If an app accesses the keychain (and lots do) and it changes then it has to be reauthorised.  Ordinarily I'd just hit "always allow" and that would be it.

But the keychain element it wanted access to is beta.photoradar.com.  Now Google says that PubSub updates are to do with syncing MobileMe and RSS feeds which all seems pretty cool.  But I don't have a MobileMe bookmark for PR and have never subscribed to their RSS.  (Or any RSS on this particular machine)

It's entirely possible there's nothing to worry about but there's a small chance there's something a bit iffy about their site pushing RSS updates or something.  It appears that something is polling the PR site for updates.

If you're still on PR you may want to check any dodgy incoming traffic or suspicious phone homes.  TBH I doubt the team have the skills or the inclination to do anything like this but it's ever so suspicious that of all sites this is the one that popped up.


It's Guest's round

Offline greypoint

  • Hero Member
  • *****
  • Posts: 1041
Re: PhotoRadar Security issue (possibly important)
« Reply #1 on: September 01, 2009, 09:51:02 PM »
If only I understood that I might be worried :o

Offline Trickee

  • Hero Member
  • *****
  • Posts: 655
    • Mysite
Re: PhotoRadar Security issue (possibly important)
« Reply #2 on: September 01, 2009, 10:16:42 PM »
pubsub agent? is that someone that sells pubs?--it does read very jargonistic but my understanding is that its a security issue form that site, that they won't have a clue about and won't know how to fix it and could annoy many of its new shiny members :)

picsfor

  • Guest
Re: PhotoRadar Security issue (possibly important)
« Reply #3 on: September 01, 2009, 11:10:12 PM »
not just annoy members - it could lead to you having your computer hacked into remotely or a nice little prgoram being deposited that sends all your critical stuff to some one for their benefit.

I think the word amateurs is a little too complimentary for the crowd they have working over there.

Hence i had to ask what is going on - not happy with what i saw and as this place is doing a darn good job of replacing DCM, don't see a need to bother!

Offline Peter Jackson

  • Newbie
  • *
  • Posts: 20
    • Peter Jackson Photography
Re: PhotoRadar Security issue (possibly important)
« Reply #4 on: September 02, 2009, 12:31:32 AM »
Ordinarily I'd punt this over to the site admins and they would tell me why I don't need to worry.  For "obvious" reasons I'm not going to do that......

Anyway I turned on the Mac in the Gallery today.  It did some software updates and all was cool.  Then it chucked up an alert.  Apparently the PubSub Agent was requesting access to my keychain.  Alerts like this are reasonably common in OS X after an update.  If an app accesses the keychain (and lots do) and it changes then it has to be reauthorised.  Ordinarily I'd just hit "always allow" and that would be it.

But the keychain element it wanted access to is beta.photoradar.com.  Now Google says that PubSub updates are to do with syncing MobileMe and RSS feeds which all seems pretty cool.  But I don't have a MobileMe bookmark for PR and have never subscribed to their RSS.  (Or any RSS on this particular machine)

It's entirely possible there's nothing to worry about but there's a small chance there's something a bit iffy about their site pushing RSS updates or something.  It appears that something is polling the PR site for updates.

If you're still on PR you may want to check any dodgy incoming traffic or suspicious phone homes.  TBH I doubt the team have the skills or the inclination to do anything like this but it's ever so suspicious that of all sites this is the one that popped up.


Hmmmm........That starts to make more sense now Jonathan, ever since I have been logging onto PR I receive a warning message from Sophos Firewall that the site is attempting to access my computer, after hitting "block all activity" it allows me in. Ordinarily that would be an end of the matter as once a site is blocked, it is blocked, unless something changes as I understand. However it would appear that something on PR is changing as I keep getting the firewall alert each and every time I access the site, I had put it down to my firewall being a little over zealous, which it can be on occasions, now it looks like there is possibly more to it.

I think I'll just stop visiting there to be on the safe side.
Oh Lord, please help me to be the person that my dog thinks I am.

Offline Jonathan

  • Hero Member
  • *****
  • Posts: 1273
    • PeopleByRyan
Re: PhotoRadar Security issue (possibly important)
« Reply #5 on: September 02, 2009, 07:58:18 AM »
it does read very jargonistic

OK, I was trying not to be alarmist.  I'll simplify....... :)

It's possible that something on the PR site is retrieving personal data from your machine.  It's possible this is happening even if you don't visit the site any more (i.e. it may have dropped some code into the browser such as a bookmark or RSS).

TBH I don't think it is much to worry about - I just installed Little Snitch and went for a quiet browse on the site (OMG - things are worse than I thought!!!) and it seems reasonably happy.  But Peter's results may back mine up.  If it was put there by the site developers then it's a little dodgy.  If it's something piggybacking on their code to access your machine then it's well dodgy.

But then, I've been warned about even discussing security with anybody.  What's that black van doing outside........?  :legit:

ETA: very enlightening browsing the PR site with a couple of freeware dev tools running.  Typical page has 20 - 30 coding errors.  Most links (and there are a lot of links) have a couple of warnings about sloppy code and nearly all have a severe warning about unsafe Javascript.  It seems some of the Javascript is trying to access the wrong domain which actually looks very dodgy.....
« Last Edit: September 02, 2009, 08:02:40 AM by Jonathan »
It's Guest's round

Offline wendoureecat

  • CC Regular visitor
  • **
  • Posts: 69
    • Art Thru A Lens
Re: PhotoRadar Security issue (possibly important)
« Reply #6 on: September 02, 2009, 09:04:27 AM »
Must admit havent ventured back to PR site for a while nor the DCM site. The DCM site was one of the more user friendly forums with some great characters and must confess although I dont post much have learnt a great deal from reading the forum. The PR site now and yes I know it is still a beta site seems to have more holes than the Albert Hall in it and I prefer a more user friendly forum........I dont want to get an IT degree just to post a pic. they really need to get their backside into gear with it. My congrats and thanks though goes to Lurkalot as this site is better than them both with again great characters to grace the threads.

Offline Sarasocke

  • Hero Member
  • *****
  • Posts: 680
    • my flickr
Re: PhotoRadar Security issue (possibly important)
« Reply #7 on: September 02, 2009, 09:34:31 AM »
Must admit havent ventured back to PR site for a while nor the DCM site. The DCM site was one of the more user friendly forums with some great characters and must confess although I dont post much have learnt a great deal from reading the forum. The PR site now and yes I know it is still a beta site seems to have more holes than the Albert Hall in it and I prefer a more user friendly forum........I dont want to get an IT degree just to post a pic. they really need to get their backside into gear with it. My congrats and thanks though goes to Lurkalot as this site is better than them both with again great characters to grace the threads.

I cannot agree more  :tup:
Carol aka Sarasocke 
My Gallery

Offline Bigbill

  • Full Member
  • ***
  • Posts: 159
    • Gigstills
Re: PhotoRadar Security issue (possibly important)
« Reply #8 on: September 02, 2009, 12:24:20 PM »
Hewwo from Chilly Sheffy.

Yahhhhh,have to agree with the above,Lurky deserves a huge pat on the back for getting this place up and running,i just hope it goes on and on and develops into something huge,,,,,i never would have said that in DCM,and ive never seen PR,and having read the opening bit of this thread i wont be rushing over there,despite all the glee though,i think its very unfortunate that DCM has gone the way it has.

Shine On

Offline greypoint

  • Hero Member
  • *****
  • Posts: 1041
Re: PhotoRadar Security issue (possibly important)
« Reply #9 on: September 02, 2009, 12:32:48 PM »
A site/forum is simply the sum of it's members [and the hard work and generosity of it's owner!] so if everyone who's an active member now remains active here and others continue to join there's no reason why it can't continue to be better than those commercial ones we won't mention :D ::) :-X

Offline John Doyle2

  • Full Member
  • ***
  • Posts: 108
Re: PhotoRadar Security issue (possibly important)
« Reply #10 on: September 02, 2009, 04:33:31 PM »
 I stopped visiting P.R. Awhile back. Still visiting DC Forums though and hope that it will continue to function! Yes, Lurk has created a good home here. :tup:

Hybridphotog

  • Guest
Re: PhotoRadar Security issue (possibly important)
« Reply #11 on: September 02, 2009, 06:18:29 PM »
A site/forum is simply the sum of it's members [and the hard work and generosity of it's owner!] so if everyone who's an active member now remains active here and others continue to join there's no reason why it can't continue to be better than those commercial ones we won't mention :D ::) :-X
At least the admin here listen. They also seem to actually do something, as opposed to just collecting dust and a monthly wage. ;)

Offline Mick

  • I've got the latest Canon - 4 rings, double oven and eye level grill! And HD video!
  • Administrator
  • Hero Member
  • *****
  • Posts: 2555
  • I really, really hate lawn mowers.
    • Camera Craniums
Re: PhotoRadar Security issue (possibly important)
« Reply #12 on: September 02, 2009, 06:26:19 PM »
A site/forum is simply the sum of it's members [and the hard work and generosity of it's owner!] so if everyone who's an active member now remains active here and others continue to join there's no reason why it can't continue to be better than those commercial ones we won't mention :D ::) :-X
At least the admin here listen. They also seem to actually do something, as opposed to just collecting dust and a monthly wage. ;)

I try Dave, I try.  ;) My web dev skills aren't up to much though.  Still learning as I go.  :tup: 

Thanks to all for the kind words about CC.  It really was a case of trial and error to get it to this stage, believe me.  :D
Thank You, "Guest" For Reading This Post.

My Gallery
Tinyportal.net Running SMF 2.0.13 / Tinyportal 1.0
Guitarist Guild Running SMF 2.0.13 / Tinyportal 1.2R
The Garden Machinery Forum Running SMF 2.0.13 / Tinyportal 1.2R

Offline Damon

  • Full Member
  • ***
  • Posts: 229
Re: PhotoRadar Security issue (possibly important)
« Reply #13 on: September 02, 2009, 06:33:06 PM »
A site/forum is simply the sum of it's members [and the hard work and generosity of it's owner!] so if everyone who's an active member now remains active here and others continue to join there's no reason why it can't continue to be better than those commercial ones we won't mention :D ::) :-X

This is my one and only site & i`m here to stay. Even if i had time to spend thralling through various site`s i still don`t think i`d bother.
I can`t say enough how much i like this site & i`m very comfortable now. :)
Damon.

Offline Hinfrance

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 5149
  • Cake is good
    • Hinfrance
Re: PhotoRadar Security issue (possibly important)
« Reply #14 on: September 02, 2009, 09:12:04 PM »
I can't even sign on to PR. It says it doesn't recognise the name they set for me, it won't let me reregister and it won't let me change the moniker.

I see you've quit Mick.  :D
Howard  My CC Gallery
My Flickr
The theory seems to be that as long as a man is a failure he is one of God's children, but that as soon as he succeeds he is taken over by the Devil. H.L Mencken.

 

latest Posts

Subject Board Views/Replies Member Date & Time
xx What annoyed you today? General Discussion 634844/3972 Jediboy Last post Today at 02:13:31 PM
xx Horizons ENTRIES 27/07 - 02/08/20 International Weekly Comp Entries 143/3 Hinfrance Last post Today at 01:03:17 PM
xx Canon EF L IS USM 500 f/4 for sale Lenses 5/0 Hinfrance Last post Today at 12:36:05 PM
question STREET-ENTRIES-Weekly Comp 1/8-9/8/2020 International Weekly Comp Entries 32/0 Hinfrance Last post August 01, 2020, 04:09:00 PM
smiley STREET-CHAT-Weekly Comp 1/8-9/8/2020 International Weekly Comp Entries 19/0 Hinfrance Last post August 01, 2020, 04:05:33 PM
xx POLL for TIME OUT International Weekly Comp Entries 167/3 Hinfrance Last post August 01, 2020, 01:04:50 PM
xx TIME OUT. Chat thread weekly comp. International Weekly Comp Entries 207/4 Jediboy Last post July 27, 2020, 11:31:15 PM
xx TIME OUT. Entry thread weekly comp. International Weekly Comp Entries 165/3 Oldboy Last post July 27, 2020, 10:17:12 PM