Re: [Wikitech-l] Possibly malicious script inside United_Kingdom article
On Mon, 2013-07-08 at 22:01 +0300, Sergey Grass wrote: Dear ladies and gentlemen! Every time when I go to this page: http://en.wikipedia.org/wiki/United_Kingdom, the following script causes my browser (Firefox) to freeze. Script, which causes harm: http://bits.wikimedia.org/en.wikipedia.org/load.php?debug=falselang=enmodules=ext.centralNotice.bannerController%7Cext.uls.displaysettings%2Cime%2Cinit%2Cinputsettings%2Cinterface%2Clanguagenames%2Clanguagesettings%2Cpreferences%2Cwebfonts%7Cext.uls.webfonts.repository%7Cext.wikimediaShopLink.core%7Cjquery.client%2Ccookie%2CdelayedBind%2Ci18n%2Cime%2CjStorage%2Cjson%2CmwExtension%2Ctipsy%2Culs%2Cwebfonts%7Cjquery.uls.data%2Cgrid%7Cmediawiki.Uri%2Capi%2Ccldr%2CjqueryMsg%2Clanguage%2Cnotify%2Cuser%2Cutil%7Cmediawiki.api.parse%7Cmediawiki.language.data%2Cinit%7Cmediawiki.legacy.ajax%2Cwikibits%7Cmediawiki.libs.pluralruleparser%7Cmediawiki.page.startup%7Cskins.vector.js%7Cwikibase.client.initskin=vectorversion=20130708T181033Z*:280 This occured only on aforementioned web page. All other pages work normally. Sort this thing out, please! Might be https://bugzilla.wikimedia.org/show_bug.cgi?id=49935 andre -- Andre Klapper | Wikimedia Bugwrangler http://blogs.gnome.org/aklapper/ ___ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
[Wikitech-l] Possibly malicious script inside United_Kingdom article
Dear ladies and gentlemen! Every time when I go to this page: http://en.wikipedia.org/wiki/United_Kingdom, the following script causes my browser (Firefox) to freeze. Script, which causes harm: http://bits.wikimedia.org/en.wikipedia.org/load.php?debug=falselang=enmodules=ext.centralNotice.bannerController%7Cext.uls.displaysettings%2Cime%2Cinit%2Cinputsettings%2Cinterface%2Clanguagenames%2Clanguagesettings%2Cpreferences%2Cwebfonts%7Cext.uls.webfonts.repository%7Cext.wikimediaShopLink.core%7Cjquery.client%2Ccookie%2CdelayedBind%2Ci18n%2Cime%2CjStorage%2Cjson%2CmwExtension%2Ctipsy%2Culs%2Cwebfonts%7Cjquery.uls.data%2Cgrid%7Cmediawiki.Uri%2Capi%2Ccldr%2CjqueryMsg%2Clanguage%2Cnotify%2Cuser%2Cutil%7Cmediawiki.api.parse%7Cmediawiki.language.data%2Cinit%7Cmediawiki.legacy.ajax%2Cwikibits%7Cmediawiki.libs.pluralruleparser%7Cmediawiki.page.startup%7Cskins.vector.js%7Cwikibase.client.initskin=vectorversion=20130708T181033Z*:280 This occured only on aforementioned web page. All other pages work normally. Sort this thing out, please! Sincerely yours, Sergey G ___ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l
Re: [Wikitech-l] Possibly malicious script inside United_Kingdom article
Dear ladies and gentlemen! Every time when I go to this page: http://en.wikipedia.org/wiki/United_Kingdom, the following script causes my browser (Firefox) to freeze. Script, which causes harm: http://bits.wikimedia.org/en.wikipedia.org/load.php?debug=falselang=enmodules=ext.centralNotice.bannerController%7Cext.uls.displaysettings%2Cime%2Cinit%2Cinputsettings%2Cinterface%2Clanguagenames%2Clanguagesettings%2Cpreferences%2Cwebfonts%7Cext.uls.webfonts.repository%7Cext.wikimediaShopLink.core%7Cjquery.client%2Ccookie%2CdelayedBind%2Ci18n%2Cime%2CjStorage%2Cjson%2CmwExtension%2Ctipsy%2Culs%2Cwebfonts%7Cjquery.uls.data%2Cgrid%7Cmediawiki.Uri%2Capi%2Ccldr%2CjqueryMsg%2Clanguage%2Cnotify%2Cuser%2Cutil%7Cmediawiki.api.parse%7Cmediawiki.language.data%2Cinit%7Cmediawiki.legacy.ajax%2Cwikibits%7Cmediawiki.libs.pluralruleparser%7Cmediawiki.page.startup%7Cskins.vector.js%7Cwikibase.client.initskin=vectorversion=20130708T181033Z*:280 This occured only on aforementioned web page. All other pages work normally. Sort this thing out, please! Might be https://bugzilla.wikimedia.org/show_bug.cgi?id=49935 andre Sergey Might be worth trying to use debug mode for ResourceLoader? Not sure if that is enabled on WMF Wikis, but it would help narrow down which script actually caused the problem. You can add ?debug=true to the end of the URL to enable that. Right now the script you linked to is all the scripts on the page pretty much compressed into one file. Thank you, Derric Atzrott Alizee Pathology ___ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l