James Kovacs

Sponsors

The Lounge

Syndication

Recent Posts

Tags

View more

Archives

Advertisement

James Kovacs » altnetpedia Back in Business
Images in this post missing? We recently lost them in a site migration. We're working to restore these as you read this. Should you need an image in an emergency, please contact us at imagehelp@codebetter.com
altnetpedia Back in Business

Earlier today, an unknown hacker exploited a security vulnerability in ScrewTurn Wiki and replaced the altnetpedia site with pron links. I have restored the site and upgraded to the latest version of ScrewTurn, which is v2.0.30. (We were running v2.0.21 and the vulnerability was fixed in v2.0.24.) My bad for not keeping the site updated with latest. I apologize to the ALT.NET community for not being more vigilant with patches to the wiki software. I've added the ScrewTurn RSS feed to my reader to keep me apprised of future fixes.

To the unknown hacker, I hope that you're satisfied. I had booked the afternoon off to take my two boys (ages 3 and 5) to the Science Centre, but instead spent it undoing your evil.

Posted 04-22-2008 5:36 PM by james.kovacs
Filed under:

[Advertisement]

Comments

Erik wrote re: altnetpedia Back in Business
on 04-22-2008 8:20 PM

Ah man. My condolences on the loss of your free time - I've been there myself. =(

sergiopereira wrote re: altnetpedia Back in Business
on 04-22-2008 9:01 PM

Phew. For a second I thought all those new wiki entries were some of the more interesting open spaces sessions that I missed.

Chris wrote re: altnetpedia Back in Business
on 04-22-2008 9:42 PM

just wanted to let you know that there's still some lingering effects of the hack on the sandbox page of the wiki.

Jimmy Bogard wrote re: altnetpedia Back in Business
on 04-22-2008 9:47 PM

Thanks James!

Although it did round out my knowledge of a few Asian foot fetish sites I missed in my intertubes adventures.

james.kovacs wrote re: altnetpedia Back in Business
on 04-22-2008 11:05 PM

@All - Thanks for understanding, everyone.

@Chris - Thanks for the heads up. I have unloaded the Sandbox plug-in completely so it won't reload on a site restart. A quick investigation revealed that the Sandbox plug-in allows anonymous users to modify content. Although the content isn't stored on disk, someone has a spambot pointed to the page to add pron links whenever the site restarts.

Dew Drop - April 23, 2008 | Alvin Ashcraft's Morning Dew wrote Dew Drop - April 23, 2008 | Alvin Ashcraft's Morning Dew
on 04-23-2008 8:28 AM

Pingback from  Dew Drop - April 23, 2008 | Alvin Ashcraft's Morning Dew

Bryan Reynolds wrote re: altnetpedia Back in Business
on 04-23-2008 4:37 PM

Sorry for your loss.  With technology as pervasive and complex as it is in all of our worlds no one can catch and be on top of all things.  

The hacker does not care.  No guilt, they feel they are doing you a favor.

Add a Comment

(required)  
(optional)
(required)  
Remember Me?