Cannot type "/ etc / hosts" (without the spaces)

  • Thread starter Thread starter Wrichik Basu
  • Start date Start date
  • Tags Tags
    Type
AI Thread Summary
Users are encountering issues when attempting to paste or type the string "/etc/hosts" on the Physics Forums website, which triggers a security block from Cloudflare. The error message indicates that the action performed was flagged as a potential online attack, likely due to the presence of known attack payloads in the input. It has been confirmed that while pasting the string with spaces works, submitting it without spaces results in a "Problem encountered" dialog. This behavior is linked to Cloudflare's security protocols, which may be overly sensitive to certain content formats. Users suggest that changing the front-end handling of requests could mitigate these issues, as the problem seems to arise specifically with multipart/form-data requests. Additionally, switching from WYSIWYG mode in the editor may help in bypassing the restrictions.
Wrichik Basu
Science Advisor
Insights Author
Gold Member
Messages
2,180
Reaction score
2,717
I was trying to paste the hosts file in this thread, and ran into an exception:

1662025162260.png


I can't paste the full error message from the console because PF is not allowing me to do so. Here is the error message:

Sorry, you have been blocked
You are unable to access physicsforums.com
Why have I been blocked?
This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution. There are several actions that could trigger this block including submitting a certain word or phrase, a SQL command or malformed data.

What can I do to resolve this?
You can email the site owner to let them know you were blocked. Please include what you were doing when this page came up and the Cloudflare Ray ID found at the bottom of this page.

Cloudflare Ray ID: 743cfbb7cc8df8d7 • Your IP: <Removed_by_me> • Performance & security by Cloudflare

Upon further testing, it turns out that I can paste the hosts file, but cannot type / etc / hosts (without the spaces). Neither in code blocks nor as plain text.
 
Computer science news on Phys.org
Test: ##\texttt{/} \texttt{etc} \texttt{/} \texttt{hosts}##

Works fine with me. (OK, I cheated a lot :smile:)
 
  • Haha
Likes Wrichik Basu
Quick test.
[code title="/ etc / hosts"]/ etc / hosts[/code]
I can confirm the problem. If I leave out the spaces in either the title or the body of the code block, then I can preview it just fine, but if I try to submit it gives the "Problem encountered" dialog and I cannot submit.
 
  • Like
Likes Wrichik Basu
Something about the format of the content in the request is tripping CF's detection.
 
  • Like
Likes Wrichik Basu
CloudFlare simply won't let the string /etc/hosts through in a multipart/form-data request, presumably because this is a known attack payload. This is also the case with many other strings like <script>.

I don't think CF would be so picky about application/json content, perhaps you could persuade ZenForo to rewrite their front end XHR handler?
 
  • Like
  • Informative
Likes Wrichik Basu, Greg Bernhardt and Vanadium 50
Take a screenshot, then post that.
 
pbuk said:
known attack payload
That's the key. If you type content like that, you shouldn't be surprised when its blocked. ("But your honor, the gun wasn't loaded!")
 
pbuk said:
CloudFlare simply won't let the string /etc/hosts through in a multipart/form-data request, presumably because this is a known attack payload. This is also the case with many other strings like <script>.
But how did you write these?
 
  • #10
Wrichik Basu said:
But how did you write these?
Click "Reply" and you'll see...
 
  • Informative
Likes jack action
  • #11
pbuk said:
Click "Reply" and you'll see...
This is what I see:

1662132954757.png
 
  • #12
Wrichik Basu said:
This is what I see:
Ah you also have to click the [ ] icon in the editor bar to leave WYSYWIG mode.
1662133729717.png
 
  • Like
Likes Wrichik Basu

Similar threads

Bug Thread with python and sqlalchemy code is being blocked by Cloudflare
Replies
1
Views
988
How to add confg file to allow UHD drive set priority?
Replies
1
Views
3K
Why do emails from my contact form bounce?
Replies
10
Views
3K
Function Template: Solve Complications with Mixing Types for Variable Swapping
2
Replies
63
Views
5K
Create Apache Virtual Host: Step-by-Step Guide
Replies
2
Views
14K
[ubuntu] Can't boot into anything after installing Ubuntu on Windows 7
Replies
2
Views
6K
Solving Error: Cannot Copy File - Windows XP SP2
Replies
6
Views
9K
Online videos may be conduits for viruses
Replies
1
Views
5K
Why Does My C Program Segmentation Fault Without a Filename?
Replies
5
Views
3K
Has this Twitter account been hacked?
Replies
12
Views
2K

Hot Threads

Recent Insights

Back
Top