Copy link to clipboard
Copied
Already sent an email to Customer Support which they have chosen to ignore.
I get a window pop up at a casino game site that's asking for 1 MB of storage on my computer, like that's going to happen!
There's a link, which I won't click on, d3ffxysrddr4.cloudfront.net
The top of the window says Adobe Flash Player Settings
I have an HP computer with Windows 7 Professional and I use Firefox, version 40.0
So what is this all about? It has an accept and a deny button. Obviously haven't hit Accept and won't even to see what happens. But it takes numerous attempts clicking on Deny before it actually accepts the click. I've counted up to 65 clicks on Deny before the window would go away.
Firstly, there's no grand conspiracy here. This is a security dialog. It's working as intended.
Here's what's happening:
Copy link to clipboard
Copied
Here's the help page that describes this dialog and your options.
http://www.macromedia.com/support/documentation/en/flashplayer/help/help06.html
Copy link to clipboard
Copied
I have been playing Funky Bay on Facebook gameroom and I get the same box except it says Belka games on it and has this web address attached to it festatic.b-cdn.net. It is requesting permission to download files onto my computer, it is very misleading as it appears it is coming from Adobe Flash. I reported it to Adobe and they sent me an email address for this particular site and it turns out it is in Russia and is a bogus email address. I think Adobe should investigate and put a stop to this!!! It is so annoying because as long as the box is on the screen you cannot do anything.
Copy link to clipboard
Copied
Adobe will put a stop to it 31 December 2020. But remember, people can continue to fake messages any time.
Copy link to clipboard
Copied
they are not going to investigate and put a stop to this because is end of life. is done.
Copy link to clipboard
Copied
Firstly, there's no grand conspiracy here. This is a security dialog. It's working as intended.
Here's what's happening:
Now, the reason that the button wouldn't take your click is a side-effect of the fact that Flash Player is running as a plug-in inside the browser. This is a long-standing, intractable problem. The right solution would have been to have the browser put these choices directly in their security UI, but that would require every single browser to do work to wire that in. Allowing browser plug-ins was a general regret in the browser ecosystem, so making a bunch of engineering investment to perpetuate plug-ins like Flash was a really tough sell (I made the pitch, but it was a non-starter).
Anyway, since we're showing you a security dialog, we want to make sure that you can actually see that dialog. Web developers can stack things in a browser like you would by placing pieces of paper on top of each other on a table (i.e. stacking along the z-index). The thing on top is visible (assuming it's opaque), and the other stuff is obscured, but still there. The problem is, if you have an obscured button lower on the z-index, that button can still catch a click.
Flash Player, because it's just some component embedded in the page, has no way to know where the browser puts it in the z-index. That's a big problem, because we need to know that you're seeing that security dialog. You don't want a scenario where an attacker puts a "Click Here to Win A Prize" button over the top of the. "Allow Camera and Mic Access" button. See https://en.wikipedia.org/wiki/Clickjacking for more on that.
So... the way that we figure this out is that internally is that we have a copy of the pixels make up our dialog that gets passed to the browser for rendering, and we know the coordinates and dimensions of the rectangle where it should be on the screen. We have a way to ask the browser whether or not our expectations for what should be in that rectangle match what the browser thinks is there. (The browser's view is more authoritative, but in modern rendering engines isn't necessarily 100% accurate, which makes this test kind of flaky.)
When you click the button, we take a couple samples and compare what we think should be there with what the browser says is there. If they match, and they were consistent, then we take the click. If they don't match, the safe thing to do is to assume that the dialog was obscured and ignore the click.
It's an imperfect solution for an intractable problem, and there are inherent false positives. This is exacerbated by the fact that if there's video or animation happening behind the dialog, there's a good chance that will capture some of the surrounding pixel data (because on today's modern high-density displays and underlying scaling logic in the OS, the boundaries aren't necessarily round numbers) and the motion will cause the test to fail.
While not the optimal user experience, we're choosing to fail in the most secure way in scenarios where we're not 100% sure that you were intentionally making a security choice. We do nothing, and leave that dialog up to make sure you know that we did nothing.
By clicking around a bunch, you caught a hit area and a state where everything lined up. In an ideal world, that's what would happen every time, but it doesn't.
We can't really do anything to make this better in the browser, but we did make a better way for most browsers (Chrome is the exception, because they have their own embedded copy of Flash Player with it's own settings).
Go to the Control Panel > Flash Player and open the control panel. Choose the Storage tab, and you can set both global and per-site preferences. If you choose Always Deny, you'll never see that dialog again, but you also lose the ability to see when a site might be asking for permission to store data. From apps that require the ability to store data, this may prevent them from running, and you'd need to either find something else to use, or explicitly allow that site to store data.