See: http://toolbar.netcraft.com/site_report?url=http://shclient.nl
75% of the trackers on this site could be protecting you from NSA snooping. Tell securehoster.nl to fix it.
Unique IDs about your web browsing habits have been insecurely sent to third parties.
2vXXXXXXXXXXXXX9ukvro6b90 s1.securehoster.nl shared with 4 parties involved: -s1.securehoster.nl
-local.adguard.com (secure), - Google, -ww.mustbebuilt.co.uk -www.mustbebuilt.co.uk (extension).
Google Analytics tracking mainly.
And @“SecureHoster” thank you very much for your reaction, this give us all hope. Pro-active secure hosting, that is just what the community needs, and that is why we report here. Pointing out some weaknesses overlooked always helps. Security does not only mean monitoring and analyzing logs, it is also about retiring vulnerable code. Zip it for later reference and then take it down.
polonus (volunteer website security analyst and website error-hunter)
Hey Eddy! Well, it’s not a critical issue to be fixed right now. It’s just a website, not a system. We are already busy with a new website, so it will be updated soon.
Thank’s, polonus
Is it possible to move this thread from “viruses and worms” to another forum/section? :-\
Didn’t knew about the new website.
I guess it will be up soon.
If not I sure would fix that issue, even if it is rated as medium.
Better safe than sorry as they say
Yes the thread can be moved by people who have moderation rights.
But there is no need to move it.
This is the correct forum for it.
We should always determine according to the following raw formula: number of vulnerabilities times severity of the vulnerabilities times how easy these vulnerabilities can be exploited. In case of user enumeration enabled I scale this as a high risk vulnerability.
In case of XSS DOM sinks and sources it depends on where these have access (so the third denominator of that formula).