11551: No contact to other servers - LimeSurvey bugs and feature requests

This bug affects 1 person(s).

256

ID	Project	Category	View Status	Date Submitted	Last Update

11551	Bug reports	Security	public	2016-08-16 15:11	2016-08-17 14:54

Reporter	krause	Assigned To	c_schmitz
Priority	none	Severity	partial_block
Status	closed	Resolution	fixed
Fixed in Version	2.50.x

Summary	11551: No contact to other servers
Description	This is a cross-post from: https://www.limesurvey.org/de/foren/future-features/106265-no-contact-to-other-servers I think 'Security' is the closest related topic. The LimeSurvey main page (of installed surveys) contacts google servers (at least three times, for fonts). I would appreciate if all of these requests are removed from the official limesurvey distribution and future features/templates are checked for this sideline. With contacting others servers requests are generated on these servers. This could potentialy be used for track and analyse features; especially for very personal surveys topics this is undesirable. Disabling g.-analytics and using TLS helps to some extend, but removing the additional requests would be easy and could be a further improvement.
Tags	No tags attached.

Bug heat	256
Complete LimeSurvey version number (& build)
I will donate to the project if issue is resolved
Browser
Database type & version
Server OS (if known)
Webserver software & version (if known)
PHP Version

User List	There are no users monitoring this issue.

tammo 2016-08-16 15:16 developer ~40293	Please either use safe fonts or embed fonts.

tammo 2016-08-16 15:17 developer ~40294	http://www.w3schools.com/cssref/css_websafe_fonts.asp

c_schmitz 2016-08-16 17:33 administrator ~40296	Fix committed to master branch: http://bugs.limesurvey.org/plugin.php?page=Source/view&id=20073

c_schmitz 2016-08-16 17:42 administrator ~40297	Fix committed to master branch: http://bugs.limesurvey.org/plugin.php?page=Source/view&id=20075

~~markusfluer~~ 2016-08-16 17:47 administrator ~40298	Fix committed to master branch: http://bugs.limesurvey.org/plugin.php?page=Source/view&id=20076

c_schmitz 2016-08-17 14:54 administrator ~40319	Version 2.50+ Build 160817 released

LimeSurvey: master 6e1413ca 2016-08-16 17:17 c_schmitz Details Diff	Fixed issue 11551: [security] LimeSurvey is using external font libraries	Affected Issues 11551
	mod - templates/default/css/flat_and_modern-rtl.css	Diff File
	mod - templates/default/css/flat_and_modern.css	Diff File
	add - templates/default/fonts/lato-v11-latin-700.eot	Diff File
	add - templates/default/fonts/lato-v11-latin-700.svg	Diff File
	add - templates/default/fonts/lato-v11-latin-700.ttf	Diff File
	add - templates/default/fonts/lato-v11-latin-700.woff	Diff File
	add - templates/default/fonts/lato-v11-latin-700.woff2	Diff File
	add - templates/default/fonts/lato-v11-latin-italic.eot	Diff File
	add - templates/default/fonts/lato-v11-latin-italic.svg	Diff File
	add - templates/default/fonts/lato-v11-latin-italic.ttf	Diff File
	add - templates/default/fonts/lato-v11-latin-italic.woff	Diff File
	add - templates/default/fonts/lato-v11-latin-italic.woff2	Diff File
	add - templates/default/fonts/lato-v11-latin-regular.eot	Diff File
	add - templates/default/fonts/lato-v11-latin-regular.svg	Diff File
	add - templates/default/fonts/lato-v11-latin-regular.ttf	Diff File
	add - templates/default/fonts/lato-v11-latin-regular.woff	Diff File
	add - templates/default/fonts/lato-v11-latin-regular.woff2	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-700.eot	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-700.svg	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-700.ttf	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-700.woff	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-700.woff2	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-italic.eot	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-italic.svg	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-italic.ttf	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-italic.woff	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-italic.woff2	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-regular.eot	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-regular.svg	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-regular.ttf	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-regular.woff	Diff File
	add - templates/news_paper/fonts/lato-v11-latin-regular.woff2	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-700.eot	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-700.svg	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-700.ttf	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-700.woff	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-700.woff2	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-italic.eot	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-italic.svg	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-italic.ttf	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-italic.woff	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-italic.woff2	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-regular.eot	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-regular.svg	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-regular.ttf	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-regular.woff	Diff File
	add - templates/ubuntu_orange/fonts/lato-v11-latin-regular.woff2	Diff File
LimeSurvey: master 43175e0a 2016-08-16 17:39 c_schmitz Details Diff	Fixed issue 11551: [security] LimeSurvey is using external font libraries	Affected Issues 11551
	mod - templates/news_paper/css/news_paper.css	Diff File
	rm - templates/news_paper/fonts/lato-v11-latin-700.eot	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-700.svg	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-700.ttf	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-700.woff	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-700.woff2	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-italic.eot	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-italic.svg	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-italic.ttf	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-italic.woff	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-italic.woff2	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-regular.eot	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-regular.svg	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-regular.ttf	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-regular.woff	Diff
	rm - templates/news_paper/fonts/lato-v11-latin-regular.woff2	Diff
	add - templates/news_paper/fonts/news-cycle-v13-latin-700.eot	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-700.svg	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-700.ttf	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-700.woff	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-700.woff2	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-regular.eot	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-regular.svg	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-regular.ttf	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-regular.woff	Diff File
	add - templates/news_paper/fonts/news-cycle-v13-latin-regular.woff2	Diff File
	mod - templates/ubuntu_orange/css/ubuntu_orange.css	Diff File
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-700.eot	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-700.svg	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-700.ttf	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-700.woff	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-700.woff2	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-italic.eot	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-italic.svg	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-italic.ttf	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-italic.woff	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-italic.woff2	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-regular.eot	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-regular.svg	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-regular.ttf	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-regular.woff	Diff
	rm - templates/ubuntu_orange/fonts/lato-v11-latin-regular.woff2	Diff
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-700.eot	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-700.svg	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-700.ttf	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-700.woff	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-700.woff2	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-regular.eot	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-regular.svg	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-regular.ttf	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-regular.woff	Diff File
	add - templates/ubuntu_orange/fonts/ubuntu-v9-latin-regular.woff2	Diff File
LimeSurvey: master 71213e22 2016-08-16 17:47 ~~markusfluer~~ Details Diff	Fixed issue 11551: [security] LimeSurvey is using external font libraries with addendum rtl-css	Affected Issues 11551
	mod - templates/news_paper/css/news_paper-rtl.css	Diff File
	mod - templates/ubuntu_orange/css/ubuntu_orange-rtl.css	Diff File

Date Modified	Username	Field	Change
2016-08-16 15:11	krause	New Issue
2016-08-16 15:16	tammo	Note Added: 40293
2016-08-16 15:17	tammo	Note Added: 40294
2016-08-16 16:41	c_schmitz	Project	Feature requests => Bug reports
2016-08-16 16:42	c_schmitz	Severity	feature => partial_block
2016-08-16 16:42	c_schmitz	Assigned To	=> c_schmitz
2016-08-16 16:42	c_schmitz	Status	new => assigned
2016-08-16 17:33	c_schmitz	Changeset attached	=> LimeSurvey master 6e1413ca
2016-08-16 17:33	c_schmitz	Note Added: 40296
2016-08-16 17:33	c_schmitz	Resolution	open => fixed
2016-08-16 17:42	c_schmitz	Changeset attached	=> LimeSurvey master 43175e0a
2016-08-16 17:42	c_schmitz	Note Added: 40297
2016-08-16 17:47	c_schmitz	Status	assigned => resolved
2016-08-16 17:47	c_schmitz	Fixed in Version	=> 2.5
2016-08-16 17:47	~~markusfluer~~	Changeset attached	=> LimeSurvey master 71213e22
2016-08-16 17:47	~~markusfluer~~	Note Added: 40298
2016-08-17 14:54	c_schmitz	Note Added: 40319
2016-08-17 14:54	c_schmitz	Status	resolved => closed

View Issue Details

Users monitoring this issue

Activities

Related Changesets

Issue History