Puppy Linux Discussion Forum Forum Index Puppy Linux Discussion Forum
Puppy HOME page : puppylinux.com
"THE" alternative forum : puppylinux.info
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

The time now is Wed 23 Jul 2014, 12:10
All times are UTC - 4
 Forum index » Taking the Puppy out for a walk » Announcements
Voldemort attacks wiki
Moderators: Flash, Ian, JohnMurga
Post new topic   Reply to topic View previous topic :: View next topic
Page 1 of 5 [63 Posts]   Goto page: 1, 2, 3, 4, 5 Next
Author Message
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 Jul 2007, 01:18    Post subject:  Voldemort attacks wiki
Subject description: or is it spammers . . .
 

Shocked

The wiki was attacked again as predicted
'Registered users' with spam bot name such as "rtg67op" need to be deleted in the MySQL database that Wikka uses (I don't have that access)

Going to page history (bottom of wiki page) allows genuine users to click on the date for a pre bot edit and then near the bottom of the page re-edit that page - which can then be stored

update:
A new attack matching username and wikki page has begun. It is possible it is an isolated case . . .

_________________
Puppy WIKI

Last edited by Lobster on Sun 22 Jul 2007, 09:42; edited 2 times in total
Back to top
View user's profile Send private message Visit poster's website 
Previously known as Guest


Joined: 28 Sep 2005
Posts: 240

PostPosted: Thu 05 Jul 2007, 01:55    Post subject:  

Shame, seems the dimwit wanna be hackers/children are at it again.
Back to top
View user's profile Send private message 
John Doe

Joined: 01 Aug 2005
Posts: 1689
Location: Michigan, US

PostPosted: Thu 05 Jul 2007, 02:07    Post subject:  

It's a shame that some idiot(s) needs to stomp all over it just because the library door is left open.

...and so easy to fix... middle finger extended to them.

I didn't see it, was it spam or spew?
Back to top
View user's profile Send private message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 Jul 2007, 03:55    Post subject:  

Society for the Promotion of Elfish Welfare = spew?

Smile

It is not lone hackers or script kiddies it is commercial interests
They would probably like to be thought of as 'guerilla marketers'

By having links on our site their google page rank may go up if the links are not removed. There may be other motivations that I am unaware of. We are not being singled out, this is something that would be occuring on other wikka sites . . .

As mentioned SQL removal of the 'registered user/bots' is required. as we are now in the 3rd or 4th day of attacks and it may not stop until this is attended to . . .

I am running a later version of the wikka software at tmxxine.com but this was attacked too and has the disadvanatage that all the images would have to be upgraded to a full wikka link (at the moment just the url for the image is used)

it would have to become

Code:
{{image class="left" alt="logo" image url="http://i5.tinypic.com/14vrxv5.jpg"}}


or similar

This is something I have mentioned before but no one was inclined to upgrade the images

I am inclined NOT to change ACL's. At the moment unregistered users can post, though sadly on fewer pages. More and more pages have become for registered users only [shrug]

Anyway if you have the time, pages need attention
http://puppylinux.org/wikka/RecentChanges

_________________
Puppy WIKI

Last edited by Lobster on Thu 05 Jul 2007, 06:56; edited 2 times in total
Back to top
View user's profile Send private message Visit poster's website 
HairyWill


Joined: 26 May 2006
Posts: 2949
Location: Southampton, UK

PostPosted: Thu 05 Jul 2007, 05:18    Post subject:  

Lobster,
I am happy to do some. Is there a way of just saying "revert back to revision x" or is it a matter of manually editing the content to get it to match the last sensible revision.

_________________
Will
contribute: community website, screenshots, puplets, wiki, rss
Back to top
View user's profile Send private message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 Jul 2007, 05:50    Post subject:  

you have to do it manually Confused

the best thing is to go back to a real name (click on the date not the name)

There is also (I seem to remember) a way of changing the wiki ACL's to no posting globally but I can not remember it. The command has not been used but now might be a good time . . .
ah - here it is - but that is only for comments . . .
http://wikkawiki.org/ACLInfo

thanks for the offer, I find the wiki is a useful resource, so once it is back to health a backup would also be a good idea and perhaps even a mirror

Smile

_________________
Puppy WIKI
Back to top
View user's profile Send private message Visit poster's website 
BarryK
Puppy Master


Joined: 09 May 2005
Posts: 7047
Location: Perth, Western Australia

PostPosted: Thu 05 Jul 2007, 06:43    Post subject:  

I'm trying to recall.... I think I gave the mySQL admin access to raffy?
Just what accesses did I give you raffy?
Back to top
View user's profile Send private message Visit poster's website 
HairyWill


Joined: 26 May 2006
Posts: 2949
Location: Southampton, UK

PostPosted: Thu 05 Jul 2007, 06:58    Post subject:  

Lobster wrote:
you have to do it manually Confused

the best thing is to go back to a real name (click on the date not the name)
That stinks. I wonder how difficult it is to remove a users edits from the back end.

I can't see how editing the ACLs is going to help unless you want to add a default deny to a particular user and have it affect all pages. As you have said what you really want to do is delete their account.

Now I'm really confused user XpeLwf put in an edit to fix an old forum link
http://puppylinux.org/wikka/KDE/history

_________________
Will
contribute: community website, screenshots, puplets, wiki, rss
Back to top
View user's profile Send private message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 Jul 2007, 07:02    Post subject:  

OK if Raffy or Puppian have access

they go to servage admin
go to the sql database for the wikki
then (I forget the exact details) they can change registered users by clicking by their names and then clicking on delete

this deletes the users (none have created any pages - just modified existing work)

Most of the names are pretty obviously script created . . .

_________________
Puppy WIKI
Back to top
View user's profile Send private message Visit poster's website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 Jul 2007, 07:06    Post subject:  

Hairy Will - the so called registered users have to be deleted first - need to contact Raffy or Puppian as they have SQL access . . .

Smile

_________________
Puppy WIKI
Back to top
View user's profile Send private message Visit poster's website 
WhoDo


Joined: 11 Jul 2006
Posts: 4441
Location: Lake Macquarie NSW Australia

PostPosted: Thu 05 Jul 2007, 07:08    Post subject:  

BarryK wrote:
I'm trying to recall.... I think I gave the mySQL admin access to raffy?
Just what accesses did I give you raffy?

Whatever you gave raffy, Barry, he has also given to me so we can update the website.

I have had a quick look at both mysql database groups, and done a search on users, but I am unable to locate any users of the name/type Lobster mentions.

_________________
Actions speak louder than words ... and they usually work when words don't!
SIP:whodo@proxy01.sipphone.com; whodo@realsip.com
Back to top
View user's profile Send private message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 Jul 2007, 07:19    Post subject:  

OK Warren I will go to my tmxxine database and try and give more details soon . . .

many thanks Smile

- for now
(as an example) all these are spambots
http://puppylinux.org/wikka/UsersList

_________________
Puppy WIKI
Back to top
View user's profile Send private message Visit poster's website 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 Jul 2007, 07:27    Post subject:  

OK Warren here is the procedure (there are some new ones back at tmxxine - so will have to keep an eye on this for a few days)

    MySQL Databases
    view database (for wikki or Wikka)
    wikka users
    browse
    click and delete

note - spammers are using gmail.com as their email address
if you are unsure
(but some genuine registers will also be using this)

_________________
Puppy WIKI
Back to top
View user's profile Send private message Visit poster's website 
WhoDo


Joined: 11 Jul 2006
Posts: 4441
Location: Lake Macquarie NSW Australia

PostPosted: Thu 05 Jul 2007, 07:49    Post subject:  

Lobster wrote:
OK Warren here is the procedure (there are some new ones back at tmxxine - so will have to keep an eye on this for a few days)

    MySQL Databases
    view database (for wikki or Wikka)
    wikka users
    browse
    click and delete

note - spammers are using gmail.com as their email address
if you are unsure
(but some genuine registers will also be using this)

Ok, I've been through and deleted a number of users I thought were spamming bots. Most were dead giveaways with their name/address combinations.

Problem is, I have access to 2 sections of Barry's mysql databases, and I can't see the wiki or wikka or wakka anywhere in there. I've got forums, mantis, news, reviews and 2 users databases, among many many others, but nothing for the wiki. Sorry.

_________________
Actions speak louder than words ... and they usually work when words don't!
SIP:whodo@proxy01.sipphone.com; whodo@realsip.com
Back to top
View user's profile Send private message 
Lobster
Official Crustacean


Joined: 04 May 2005
Posts: 15117
Location: Paradox Realm

PostPosted: Thu 05 Jul 2007, 08:22    Post subject:  

some databases can be shared . . . but that does not seem the right databases . . .

it also seems that you have access for
http://puppylinux.org (amongst others)

_________________
Puppy WIKI
Back to top
View user's profile Send private message Visit poster's website 
Display posts from previous:   Sort by:   
Page 1 of 5 [63 Posts]   Goto page: 1, 2, 3, 4, 5 Next
Post new topic   Reply to topic View previous topic :: View next topic
 Forum index » Taking the Puppy out for a walk » Announcements
Jump to:  

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group
[ Time: 0.0853s ][ Queries: 11 (0.0119s) ][ GZIP on ]