Topic: TalkImg.com - Image hosting for BitcoinTalk (Read 19348 times)

I said this in the sense of not using web links to access the site.
Logically, if the person saves the link in their favorites, they won't need to write whenever they need to.

Why do you recommend this?  Each time you visit you have a chance of mistyping and going to a phishing site, and you can be tracked by keyloggers    The best way is to click on a bookmark or favorite since they cannot be modified without admin permissions.

I followed the link in this post by danadc in the Spanish ANN, which correctly points to the https. The image I shared was the 2/2 and you're right that there appears http , but the 1/2 referred to the https, as shown in the following screenshot.



Thank you joker_josue , that's what I thought, but I wanted to share it with you just in case. It must be just an issue with my antivirus.

Thank you for bringing this point to attention. First of all, I want to guarantee that despite the attack suffered, no data was corrupted and no one outside had access to the server. Even if this had happened, it would have no impact at this point as everything was reset based on an offline backup.

That said, I analyzed the situation.

1. The "favicon.ico" file simply does not exist on the server. But what is favicon.ico? This file is used by many websites, to generate the website logo icon that appears in the browser window. In the case of TalkImg, this type of file is not used for this icon. If you look at the source code of the website's home page, you can see that this icon is obtained as follows:

2. The alert is pointing to http:// talkimg.com /... and access to the site must always be via https and not http.

The question is: did you write the address directly in the browser, or click on a link? If so, where was it? It is always recommended to directly type the address to access the site.

3. This was one of the requests used by part of the DDoS attack. Which is normal, this attack usually tends to use non-existent requests on the server to overload it. Since this was one of the links attempted by the attack, in the various reports the link may be associated with some type of threat. But in this case, no such file exists and most requests to this effect have been mitigated by Cloudflare.

In that sense, this is clearly a false positive. And always remember to check the links you click.

I doubt that only forum members use your services; do you track where your images are uploaded? I understand your focus is on Bitcointalk, but some people would prefer to subscribe to help maintain the system rather than make a one-time donation.

Or does your link only work within the forum? Have not tried it elsewhere yet.

Ran some online phishing detectors tools, and some identified it as suspicious/phishing, while others marked it as clean. I'm guessing it's a false positive. joker_josue might be able to give better insight on this!

I don't know, maybe I'm the only one who is receiving this alert, but when I've last tried to visit TalkImg my antivirus prevented me about a phishing attempt. I think that this is not the first time I read about this favicon thing, but I can't remember in which context, and as I don't know much about it I share it with you, just in case:



I hope it is just a false alarm.

---

 

The forum only accepts images up to 2.5MB, so it doesn't make sense to offer a plan that allows for larger uploads.

It continued to accept donations and possible advertising proposals.

Have you considered offering premium service packages to your service? It is quite expensive to run an image hosting site, yet you are providing it for free.

Every free image hosting website is following the paid package trend. Images under 10MB are still permitted on the free package, but anything larger should be charged for upload.

It was down for a few weeks not last week which made many people unable to extract image links from this site. Maybe many members were suffering because they couldn't extract image link from this site they know. They were forced to extract image links from other sites, such as https://imgbb.com/
but the problem that was there is now solved. Members are now grateful to him for that. 

I read the translation of this topic in my local section and I use it when I want to add images.
You really did a great job, it's a great service for the community, I just wanted to come here and say thank you.
I saw there was a bit of a problem last week and I thought it would be fixed in a few days, and it was.

Answered. 

I'm still configuring the backup system on the new server, I'll let you know as soon as it's operational.

thanks, it works now, i can see all the images again in the posts where i didnt see anything in the past days
I wanted to thank you very much for the great work you did for the whole community, your service is important for us and one of the best
thank you for the work done, we lov you

I guess it'll just be a whitelisted IP in Cloudflare. If it's abused, it's easy to remove again.

I'll send a PM to get my image backups complete again

Thanks for the alert. I know who used bots, and those bots didn't use any special functions. So, in most cases they just have to readjust something in their bots, without my intervention.

But always alert. 

Be careful to not give the bad guys via some forum sockpuppet any details how to screw up your site.

Thanks for your ongoing effort, patience and persistance prevails. I hope we can enjoy to use talkimg.com as we did before all this DDoS shit started. Keep up the good work!

Yeah, I think it's a bit like that.

As I said before, I had never suffered from this problem until now. What I noticed was that shortly after I changed hosts - which indicates a new IP for the site, the attack returned. It came back with a different load, but this significantly affected the site's performance.

I believe this type of attack was something similar to what the other image hosting site suffered, which caused bitcointalk to be blocked. Maybe it's something aimed at this niche, especially because in the middle of these days the forum's image proxy also suffered a small attack.

I currently have Cloudflare active on the site. Although my goal is not to continue with it, it may be difficult to let go.



If a user who has a bot is unable to use the service, send a PM.

That's a tough one. Given a sufficiently large DDOS attack, any website goes down. The problem is that DDOS protection is quite expensive, while a DDOS (using a cheap botnet of compromised computers) is cheap.

On the other hand, they can't DDOS all websites at the same time. That makes me wonder what would happen if everyone would abandon Cloudflare at the same time. One by one, sites are forced to use centralized DDOS protection, and once they're "hooked", they won't leave again.

Finally, everything returned to normal after a few days of not being able to use it.
But now the images in Pumpkin's Voting Thread are normal as well, and all the images have appeared.

@joker_josue you're amazing, you've done a good job.
Now it is only necessary to provide extra protection so that the same incident does not happen again.

here is another good shot. so it looks fixed