Google flags my sites as dangerous (Deceptive site ahead)

K-nar · April 21, 2023, 4:48pm

Hello,

le topic est-il toujours ouvert ?
Je rencontre également ce soucis depuis qq jours (2 flags selon virustotal.com : Google + Seclookup)

Pour le moment, j’ai :

contester la classification dans le formulaire “report incorrect phising warning” ici, en pointant notamment ce thread pour appuyer la cause
mis une app par défaut sur le main domain dans la config yunohost

Avec espoir que aide

 X-XSS-Protection 1; mode=block
Content-Security-Policy upgrade-insecure-requests
X-Content-Type-Options nosniff
X-Download-Options noopen
Transfer-Encoding chunked
Strict-Transport-Security max-age=63072000; includeSubDomains; preload
X-SSO-WAT You've just been SSOed
Server nginx
Connection keep-alive
X-Permitted-Cross-Domain-Policies none
Cache-Control no-cache
Date Thu, 20 Apr 2023 10:52:50 GMT
X-Frame-Options SAMEORIGIN
Content-Type text/html
Permissions-Policy interest-cohort=()

cc @Dev : je suis dispo pour mener qq tests si besoin !

JosepXavier · April 24, 2023, 11:15pm

Dr.Wily · April 28, 2023, 11:37pm

J’ai essayé cette solution et… ca ne marche pas.

Par contre l’ajout d’une meta comme suggérer par JosepXavier dans l’index de la page semble fonctionner.

carrabelloy · April 28, 2023, 11:55pm

Something like this has not happened to me yet. And I have been using yunohost for a long time. Also their apps. Maybe, because I also use original domains. I have enough of them. If I wanted to install all in all still with subdomains that, I come loosely on up to three hundred pieces. I do not understand the users who do not buy one. Also to try. Then there would not be such problems in the first place.

carrabelloy · April 29, 2023, 8:49am

I do not understand this at all. I have 20 domains running on my server under Yunohost, but I never had this before. I do not understand this. Because something like this has never happened to me.

carrabelloy · April 29, 2023, 10:32am

I also have over 20 domains and I have three more coming. But I never had this problem before. Just have to reset everything and now hopefully it will be even better. Maybe this is the penalty with all those who donate too little to yunohost

Ich habe auch über 20 Domains und es kommen noch drei weitere dazu. Doch das Problem hatte ich noch nie. Muss nur alles neu aufsetzen und jetzt wird es hoffentlich noch besser. Vielleicht ist das die Strafe bei all denen, die zu wenig spenden an yunohost

K-nar · April 30, 2023, 9:10am

@Dr.Wily : j’ai reparcouru le thread, mais je ne vois pas à quoi tu fais allusion…
Est-ce que tu peux me pointer le post, stp ?

JosepXavier · May 1, 2023, 8:59am

K-nar · May 9, 2023, 7:42pm

Hello, pour info :

Creation d’un compte sur Google Search Console
ajout du TXT fourni par Google dans mon DNS
contester le warning auprès de Google (ici)

… aura permis d’enlever le warning après qq jours !

Si la procédure permet de régler le pb, elle n’empeche qu’elle nécéssite de créer/avoir un compte Google. Dommage qd l’objectif est de se lancer dans l’auto-hebergement pour quitter les GAFAMS

Est-ce qu’il n’y aurait pas une petite action à menée coté dev pour éviter cette situation ?

Dr.Wily · May 16, 2023, 7:07pm

Yes même question, parce que copinage entre Google et certains navigateurs (firefox pour moi) qui se permettent de te lister deceptive et qui jouent le jeu des gafams c’est vraiment tout sauf neutre. Comme d’hab on prétexte la sécurité.

tituspijean · May 17, 2023, 3:02pm

Guys and gals, please stick on English on this thread.

The issue is that we have little-to-no information on what the problem actually is. Something in the way YunoHost is built has been caught in Google’s all mighty algorithm, but what? It is also difficult to decipher since some servers have never been flagged, some have been unflagged after one appeal, some are consistently flagged.

carrabelloy · May 21, 2023, 5:55pm

as mentioned before, I have neither a problem with google, nor under #discuss Yunohost. So I say such a small domain should be able to afford everyone. And then this spit is also over. Yunohost is banger and google does not interest me the bean. Therefore, this is really not a topic to boil hot. I agree with him @tituspijean

wie zuvor erwähnt, ich habe weder mit google ein Problem, und auch nicht unter #discuss #contribute-room Yunohost. Daher sage ich mal eine solche kleine Domain sollte sich jeder leisten können. Und dann ist auch diese Spuck vorbei. Yunohost ist Knaller und google interessiert mich nicht die Bohne. Daher ist das hier wirklich kein Thema zum heiß kochen.

FredJ · May 26, 2023, 10:15pm

Linux 6.1.11-meson64 #23.02.2 SMP PREEMPT Sat Feb 18 00:07:55 UTC 2023 aarch64
Machine : Odroid n2+
yunohost:
repo: stable
version: 11.1.19
yunohost-admin:
repo: stable
version: 11.1.9.4

Hello,

I can confirm that the google red screen is getting worse and worse. It’s blocking more and more of my users.
I’ve noticed that :
*It blocks more with Firefox than Chromium
*With Firefox it works if you remove what’s after /sso/ in the url.
exemple:
https://mascobado.org/yunohost/sso/?r=aHR0cHM6Ly95d2efrTd7hc2NvYmFkby5vcmcv
red screen
https://mascobado.org/yunohost/sso/
works fine

I’ve also, in the Firefox settings, deleted the certificates for domains starting with yuno… and I’ve deleted the coockies for sites starting with yuno…

Thanks for your help,
See you soon,