Super Mario Bros. X Forums

I don't think there's a way to describe it in the title, so I'll try to be concise here.

So, I go to my email, and tell it to open the link to the discussion thread in a new window. It does so, but something odd happens.
I have this set to log me in on every visit, and yet, the newly opened tab tells me I need to log in, yet if I open another new tab and type in the forums URL, I go there to find myself logged in.

I have a feeling that the site here is being phished, since the email link goes to an unsecure login page.

Why do you use your emails to navigate on the forums in the first place? Use subscriptions and bookmarking to keep up with threads?

The site has a valid certificate if you use https://. These are no signs of phishing

Cedur wrote: ↑

Mon Oct 28, 2019 4:53 am

Why do you use your emails to navigate on the forums in the first place? Use subscriptions and bookmarking to keep up with threads?

The site has a valid certificate if you use https://. These are no signs of phishing

Thing is, it doesn't happen every time. Like, for example, I used the email link to go directly to this topic (which is why I do this-saves a bit of time), and it did not come up with the unsecured and likely phishing fake login page.

These are not times to be going around and giving away that kind of information willy-nilly...

Perhaps it would be good to screenshot said "fake login page" next time?

Amyrakunejo wrote:

Cedur wrote: ↑

Mon Oct 28, 2019 4:53 am

Why do you use your emails to navigate on the forums in the first place? Use subscriptions and bookmarking to keep up with threads?

The site has a valid certificate if you use https://. These are no signs of phishing

Thing is, it doesn't happen every time. Like, for example, I used the email link to go directly to this topic (which is why I do this-saves a bit of time), and it did not come up with the unsecured and likely phishing fake login page.

These are not times to be going around and giving away that kind of information willy-nilly...

There does exist a http version of the site where you will be logged out. Some links may lead to this http version (there was a bug where the links on the pipes did this, although it has been fixed). If you add the s to the http, it should log you back in.

Although you put yourself at risk of falling for phishing scams by using emails.

Electriking wrote: ↑

Mon Oct 28, 2019 12:16 pm

There does exist a http version of the site where you will be logged out. Some links may lead to this http version (there was a bug where the links on the pipes did this, although it has been fixed). If you add the s to the http, it should log you back in.

Well, that is interesting. I guess the email generates an http style link from time to time. Just thought I'd let people know about this because if it happened to me there's a good chance I'm not the only one.

Electriking wrote: ↑

Mon Oct 28, 2019 12:16 pm

Although you put yourself at risk of falling for phishing scams by using emails.

You wouldn't believe the amount of crap I get sent via email. Of course, it's a bit too easy to tell when something is garbage these days; they only put in enough effort to obfuscate just that little bit, and it fools most that they target, not I though, lol

How to hide my email on the Internet? Now I want to use an Open VPN Anyway, you can [redacted] here, it also looks like something safer. What do you think about it? I think it will be the only right decision.

I don't think you need to be concerned about members being able to send you emails, this is done very rarely, e.g. when having an urgent concern about an episode (e.g. broken download link) by a long-gone user (and even that is rarely successful bc people often go on a new address anyway)