this post was submitted on 03 Nov 2023
171 points (87.7% liked)

Firefox

20485 readers
27 users here now

/c/firefox

A place to discuss the news and latest developments on the open-source browser Firefox.

Rules

1. Adhere to the instance rules

2. Be kind to one another

3. Communicate in a civil manner

Reporting

If you would like to bring an issue to the moderators attention, please use the "Create Report" feature on the offending comment or post and it will be reviewed as time allows.

founded 5 years ago
MODERATORS
k_o_t@lemmy.ml
golden_zealot@lemmy.ml
171
Firefox is blocking my personal website based on flawed "Google Safe Browsing" What the hell? (lemmy.sdf.org)
submitted 2 years ago by ctag@lemmy.sdf.org to c/firefox@lemmy.ml
50 comments fedilink hide all child comments
 

Started this morning. All of my personal tools like nextcloud and RSS reader were blocked, and I had to go manually override that screen for each one. Unacceptable.

you are viewing a single comment's thread
view the rest of the comments
[–] prokorean@lemm.ee 32 points 2 years ago (2 children)

Are you using a free subdomain?

[–] FarraigePlaisteach@kbin.social 7 points 2 years ago (4 children)

I am and have this issue sometimes. What’s the connection / cause?

[–] Carighan@lemmy.world 26 points 2 years ago (1 children)

Reports of individual subdomains that are running shit lead to the main site slowly being pushed to "generally non-safe".

[–] QuazarOmega@lemy.lol 10 points 2 years ago (1 children)

This is a crtified .zip moment

[–] possiblylinux127@lemmy.zip 5 points 2 years ago (1 children)

How so?

[–] GameWarrior@discuss.online 5 points 2 years ago (2 children)

Tldw; scammers trick people using .zip top level domains

Google should retract these new top level domains- Brodie Robertson

[–] PipedLinkBot@feddit.rocks 1 points 2 years ago

Here is an alternative Piped link(s):

Google should retract these new top level domains- Brodie Robertson

Piped is a privacy-respecting open-source alternative frontend to YouTube.

I'm open-source; check me out at GitHub.

[–] possiblylinux127@lemmy.zip -1 points 2 years ago (1 children)

I personally like the domain.

[–] QuazarOmega@lemy.lol 2 points 2 years ago

The problem is just that it's too susceptible to being used to trick users, the services hosted on .zip domains aren't evil by default, like your instance that is completely legit.
If you want to see (yet another) video, Thio Joe covered this really well imo

[–] TheBig2023Meltdown@lemmy.world 15 points 2 years ago (1 children)

Anyone also using that free subdomain is linked to you because you're both using the same domain

[–] FarraigePlaisteach@kbin.social 4 points 2 years ago (1 children)

Ahhh, that makes sense. Thanks.

[–] TheBig2023Meltdown@lemmy.world 6 points 2 years ago* (last edited 2 years ago)

You're welcome.

Think of it as you sharing a house with other people. You all have your own rooms (subdomains) but live at the same address (domain). You try to order a takeaway but they've blacklisted your address because another resident abused their service

(Analogy for anyone else who comes across this)

[–] anon232@lemm.ee 11 points 2 years ago (1 children)

I imagine that domain is mostly used for spam/phishing sites so Google preemptively blocks all sub domains until they prove they aren't spam. That's one of the shortcomings of using a free domain I guess.

[–] taanegl@beehaw.org 0 points 2 years ago

Just get a cheap domain. Free domain will always get flagged, unless it's for a service with no development API. It's too easy as an attack vector, so those free domains often get flagged. If you want to avoid it all together, just get a cheap domain you own and control.

[–] ctag@lemmy.sdf.org 3 points 2 years ago

I'm not, I guess I wouldn't be surprised if this happened and I was though. Thanks for the context.