+2 голосов
от
99% of images in posts not showing up - answer 404.
For example, from a recent post the very first picture is at qrator.net/getpro/habr/post_images/4f6/cca/669/4f6... and says:404 Not Found404 Not Foundnginx/1.4.4
a padding to disable MSIE and Chrome friendly error page
a padding to disable MSIE and Chrome friendly error page
a padding to disable MSIE and Chrome friendly error page
a padding to disable MSIE and Chrome friendly error page
a padding to disable MSIE and Chrome friendly error page
a padding to disable MSIE and Chrome friendly error page
On other sites all working.
The question what is and how to find out what's the problem? In the idea, I have a proxy sit, but everything else is working!
P. S. tell the good people, the links to the pictures actually lead to hstor.org I Have the same it leads to qrator.net All other sites appear normal.
FFOX and Rekonq also lead at qrator. Cell using the same network I see the normal links. That is, either the malware or the service provider indulges in, or something on our server. OS - Kubuntu latest.
P. P. S. under the clean virtual machine, everything works fine, i.e. ambush either on my machine or on the server. To the server, unfortunately, there is no access (person responsible for him missing, and to dig unless absolutely necessary do not want).
Checked out a few dozen popular sites - links to images are replaced only on habré.
P. P. P. S. Miracles! look the page source - there is a correct reference. And on the screen is wrong.
hstor for any link returns a 301 on qrator for my car!
Found via DNS spoofing hosts.
And another thing: Achtung! PI try to add the HTML code in < blockquote > in question, it looks more than strange - if there are vulnerabilities?

5 Ответы

0 голосов
от
 
Лучший ответ
In etc/hosts found fake entries for habrastorage and multiple domains Habra (substitution of the basic domain was not).
In connection with the compromise of the system will have to endure, and all of the work for the last week to check and restore from version control. At the same time, damn, now all computers to which access should be checked. It's a shame-S.
But the surprising fact of a deliberate attack on habrahabr?!
+2 голосов
от
I have displayed.
The more that they are judging by the headers nginx /1.4. 7
от
Who "they"? Have qrator.net?
0 голосов
от
in Google Chrome this problem is posed by the extension HTTPS Everywhere
Which opens websites via https if possible.
+1 голос
от
All Wallpapers are on hstor.org check if you have locked somewhere this address.
And not using a proxy.

From specified post - beta.hstor.org/getpro/habr/post_images/548/93c/520... you can see everything.

The problem is local.
от
Even if you footcloth all non-standard browser plugins, proxies, and antivirus for a test?
от
But I,as you can see, all the links in the picture are on qrator.net. That is strange. And only with Habra.
0 голосов
от
At me such hogwash was because of the service program HTTP Debugger. Apparently she could not work correctly with HTTPS. Cut down service and it worked.
Добро пожаловать на сайт 'Чем отличается?', где вы можете узнать в чем разница между казалось бы одинаковыми вещами.
...