Cookies are small files that sites use to remember information specific to users. When you go to a site, the site will check to see if you have their cookies, and pull any information they need from them. They are used to automatically log you in when you visit ILP, and to show you the right style, posts-per-page, things like that.
If you’re using Chrome, you can clear your cookies as follows: go to the ILP homepage, click the “Not secure”* warning to the left of the URL, and select ‘Cookies’ at the bottom of the menu. Then select “ilovophilosophy.com” and click “Remove” at the bottom.
You’ll then need to log back in and that will create new cookies, so if the problem was with the cookies this should fix it.
Let me know if you have any trouble.
*“Not secure” means we don’t use end-to-end encryption, so don’t send e.g. bank details or things like that via PM.
Meno, sorry. I did not notice this at first.
Most issues eventually appear to phase out I suppose but with someone/something working behind the scenes.
As for your last two lines, I have no idea about that. I wonder though. I would be quite curious to see where that would/will take its members. Knock Knock? Neil Gaiman opens door.
Did you need to log back in after you deleted your cookies?
How many cookies does it say are in use on ILP? (mine says “5 in use”)
Do you have any ad or tracker blockers enabled (Ghostery, uBlock, etc.?), or are you using private/incognito mode?
Can you say more about what it means that it seemed to work?
No one, I would hope. I just wanted to clarify that that’s the kind of insecurity they’re talking about; “not secure” to me sounds a lot more threatening than it is in the context of a message board. It’s probably a good default, but it’s a bit of an overreaction here.
The cookies should be there, and 11 is right (turns out my ad blockers were blocking 6 of them, which tells me you don’t have an ad blocker :), but I wanted to make sure they were there initially to see if your browser was storing them at all. And they should repopulate after you removed them and logged back in, so that’s expected behavior as well.
I’ve made a couple changes to how sessions are validated that I hope will fix it, let me know if you still have the issue.
I know this seems pedantic, but can you be more specific? I flushed the site sessions, which should force everyone to log in (possibly more than once), but that shouldn’t be an ongoing problem.
I think I figured out what was happening. I set up Cloudflare, which is a service that can filter out spam and denial-of-service attacks. To do that, it passes all traffic through its servers, so when it hits ILP’s servers it’s all coming from the same place. But the forum software was checking where requests were coming from as part of its validation of users. Since now all traffic is coming from the same place, that validation was giving funny results that caused some users to be logged out. I disabled that check, so it should work correctly now [-o<
I’m not sure why it only affected some users (or, in my case, why it affected my access to some parts of the site and not others), but it does seem to be a known issue with using Cloudflare and one I should have been aware of before setting up the service. My apologies to everyone affected.