It seems odd that browsers on Ubuntu would be getting CORS errors — while the same browsers for everyone else would not. CORS, being a policy, should apply consistently, no? Perhaps you've changed a setting somewhere?
Either way, I've made a note to look into setting Access-Control-Allow-Origin headers on all the static assets we publish out to Graphics8...
OK, I've been digging into this a bit further. When I do a request from a remote machine, I do get an Access-Control-Allow-Origin: * header, but from my local machine, this header is missing.
I assume that the proxy on this network discards the header and thus breaks the site.
Either way, I've made a note to look into setting Access-Control-Allow-Origin headers on all the static assets we publish out to Graphics8...