Posts: 22
Threads: 1
Joined: Jun 2014
2014-06-21, 23:22:03
I noticed that my GetSimple installation attempts to make unexpected http requests to third party domains
This appears to happen randomly when logging into the backend or when navigating to the plugins panel in the backend.
One such domain is
http://chriscagle.me, apparently the developer of GetSimple. There was at least one more domain, but I forgot now.
What is this about?
Posts: 6,266
Threads: 181
Joined: Sep 2011
What version on you on ?
The only http callouts are to our domain api to do verison checking on core and plugins.
of course plugins could do anything they want, but youll have to be more specific.
Posts: 22
Threads: 1
Joined: Jun 2014
(2014-06-22, 00:27:51)shawn_a Wrote: What version on you on ?
The only http callouts are to our domain api to do verison checking on core and plugins.
of course plugins could do anything they want, but youll have to be more specific.
version 3.3.2
Ok, I'll keep an eye on the domains.
Posts: 6,266
Threads: 181
Joined: Sep 2011
There are several domains on that ip, its a virtual host.
Posts: 22
Threads: 1
Joined: Jun 2014
It just happened again. On Login of the backend my firewall says connection attempt from httpd to
www.chriscagle.me on port 80.
Posts: 6,266
Threads: 181
Joined: Sep 2011
Your firewall is doing reverse lookups.
This is the API doing version checks to
This domain.
Posts: 22
Threads: 1
Joined: Jun 2014
I think the version checks should go to something like update.get-simple.com. It would be more understandable for the user.
I just logged in again and this time I got a connection attempt to vcardhosting.com. Now that doesn't make any sense to me.
Posts: 6,266
Threads: 181
Joined: Sep 2011
IT GOES TO THIS DOMAIN!
Go learn how virtual hosting works if you want to understand why your stupid firewall sucks at resolving IPs.
This ip has several domains on it, like almost the entire internet, web hosts use the host header to send you to the proper domain once it hits the server. Which as you can imagine makes reverse ip lookups impossible.