Tell HN: Exercise caution with links to archive sites

29 points

4 years ago

Some users comment on posts with links to various archiving sites containing copies of linked article. This is obviously welcome when linked article is a garden / behind paywall but often the article is perfectly readable with JS disabled and archive site requires running Google's, Cloudflare's JS code or worse.

Some archive sites - like archive.ph - attempt to run malicious code on viewers' devices. It seems that archive.ph's copies of various articles[1] all attempt to run at least a script from mail.ru domain that appears[2] to "harvest data from the page (references to "gender", "age", etc) and some shady-named variables like "bait". Also a function that fetches data from top-fwz1.mail.ru and then tries to submit a hidden 1px*1px form created in an iframe using this data (...)"

[1] https://hn.algolia.com/?dateRange=all&page=0&prefix=false&qu...

[2] https://news.ycombinator.com/item?id=30669851

9 comments