Welcome, Guest. Please login or register.
Did you miss your activation email?

News: If a neighbor is in need of revolutionary rehabilitation, report it to the Citizen-Liaision!

Author Topic: Security Breach  (Read 2435 times)

Offline Eluvatar

  • Tech Monkey
  • Citizen
  • *
  • Posts: 3111
  • O_O
    • Taijitu.org
Security Breach
« on: January 17, 2012, 06:42:55 AM »
Due to some hardware problems the  forum code was restored from an old backup. In that old backup, it happened that some themes were world-writable. Some unknown user on the shared server, probably themselves hacked into against their will, placed scripts on January 6th in those directories allowing them to then place code of nefarious intent all over forum.taijitu.org, wiki.taijitu.org, and several other sites.

(map.taijitu.org toaster.taijitu.org and library.taijitu.org were among those spared)

These scripts appear to have attempted to profile, and possibly attack you, the site's users. If you were using an up to date browser on an up to date operating system you *should* be fine, but I would recommend double checking to be safe. The scripts set some cookies on your computer: I would expect them to be named "lb11". The scripts also made URLs we weren't using point to attacker websites (this is how I discovered the attack).

When I discovered the attack today, I shut down everything. I have cleared out all malicious code from forum.taijitu.org and it is late, so I am leaving wiki.taijitu.org and several other sites shut down for now. I will clean them out and bring them back up as soon as practicable.

I now open the floor to haranguing and abuse. :P Have at it!
                                 
(click to show/hide)

Offline Gulliver

  • Data Dog
  • Citizen
  • *
  • Posts: 5284
  • Forsooth, do you grok my jive, me hearties?
Re: Security Breach
« Reply #1 on: January 17, 2012, 06:46:34 AM »
Don't harangue Elu, I'm pretty sure this is ultimately my fault >__>

Also, I didn't bother looking for lb11, I just burned all the cookies. BURNED THEM ALL. IT'S THE ONLY WAY.

Offline Eluvatar

  • Tech Monkey
  • Citizen
  • *
  • Posts: 3111
  • O_O
    • Taijitu.org
Re: Security Breach
« Reply #2 on: January 20, 2012, 04:42:19 AM »
I found more evil scripts.

It's possible they're getting through the wiki, but most likely they got back in through map.taijitu.org which was not, in fact, spared.
                                 
(click to show/hide)