howtogeek at April 14th, 2014 12:35 — #1
Originally published at: http://www.howtogeek.com/186954/bypass-quora-login-and-see-all-answers/
Quora is one of those question and answer sites that sadly decided to follow in the footsteps of Expertsexchange and create a terrible user interface that forces you to sign in to read past the first answer. But we can bypass that with a simple trick.
wilsontp at April 14th, 2014 14:00 — #2
I have completely removed both Quorra and Experts Exchange from my list of Google search results... since EE charges for access, there's little point in seeing its results anyway.
I use Personal Blocklist in Chrome for this. I'd love to know if there's an equivalent in IE or Firefox.
ortzinator at April 15th, 2014 00:08 — #3
The problem with Quora is that it often has useful information buried under all that BS
billinsdca at April 16th, 2014 19:20 — #4
The main problem I have with Quora besides the sign in issue is that I find the site and a lot of the regulars there to be quite a bit to be on the 'stuck up' side. There's an attitude on the site that leaves one with a bad taste in their mouth. There are many topics that I find interesting, but I get the feeling that the 'average Joe' isn't welcome or respected with their input. I've never felt this way about any other site that purports to be 'social' in nature. Perhaps I'm wrong and I just have bad karma with the site. Oh well!
liwib525 at April 16th, 2014 19:25 — #5
Any explanation of why, exactly, this works?
wilsontp at April 16th, 2014 19:51 — #6
It looks like the added bit on the URL is put in there when you share a solution from Quora's web site; that way, you can share a solution with someone without forcing them to login to see it.
What you're doing when you add that bit manually is faking the system in to thinking someone shared the link with you, rather than you getting there through Google or something.
I'm betting that once this "hack" becomes common knowledge, that Quora will change the procedure to use a unique code for every page, basically breaking this exploit.
matt_hill at April 17th, 2014 01:57 — #7
Expert Sex Change?
I hate Fixya with a passion. Do they just create webpages based on your search? I don't think I've ever got a solution from them.
liwib525 at April 17th, 2014 17:33 — #8
That's interesting...it's on purpose then?? It's not a MySQL bug or anything like that?
wilsontp at April 17th, 2014 17:51 — #9
I'm sure it's intentional, at least that adding the parameter bypasses the login. (I'm sure it's not intended that people not have to login, ever, if they don't want to.)
The ? in this "hack" actually starts what's called a "query string." Basically, a query string is a set of key/value pairs that's sent to the application running on the web server.
So what you're doing when you enter ?share=1 is passing a variable named "share" back to the server application with the value of "1".
Other values could be passed in, too, if you knew what the names were and what the expected values might be. You separate multiple key/value pairs with the & symbol, like this:
This would pass in the name Bert, the color yellow, and the location "Sesame Street". (the + symbol translates to a space with this syntax.)
This is a completely normal thing, sending parameters to web apps through the URL, and not a hack or exploit at all, really. It's just an unintended side effect of a design choice.
system at April 24th, 2014 12:35 — #10
This topic was automatically closed after 10 days. New replies are no longer allowed.