Knock Knock, You’ve Been Hacked!
Posted on April 6th, 2008 at 7:31 by fr3@K
I received an email yesterday afternoon, informing me this blog has been hacked:
Regarding fsfoundry.org,
This email is not an April’s fools email and it has been sent to notify you that your blog’s version is old and needs to be updated ASAP as it was hacked.
While tracking some Viagra spammers I have come accross several links coming from your blog and, after testing it, it appears your blog is 2.1.* generation hence vulnerable to SQL injection blind-fishing attacks. Search Google to learn more. In a few words: spammers can take full control of your blog in a matter of minutes and deface it at will.
These attacks are as serious as they can get as the spammers have full access to your blog and add hidden HTML elements to mask their links.
You MUST update your blog to the latest official WordPress version and manually clean your last 5-10 posts of the parasite links which you will only see in HTML view.
Not doing so may attract severe search engine penalties as you are currently linking to sites with VERY bad reputation.
Hoping you will take required action,
A.S.S. (Anonymous Security Specialist)
PS: I got your email address from your Dashboard / Users Management Section. I have warned many during the past months regarding the vulnerable blogs, being a blogger myself, but it seems I haven’t warned everyone. Lateste WordPress is secure.
PPS: Your login name is XXXX and password hash is XXXXXXXXXXXXXXXXXX
(more…)
COSCup 2006
Posted on October 28th, 2006 at 19:06 by fr3@K
真是錯到不能再錯, 上午參加的第一個 COSCup session 是 Open Source 數位生活. 這個 session (至少第一個 break 之前) 的 target audience 應該是剛入門的使用者吧!? 暈~~
打算趁中間的 break 偷跑到同時段的另一個 session - 中文輸入工作坊. 卻又爆滿… 只好在坐在走廊上網. 看來上午是被我浪費掉了. 餅乾 突然在線上跟我打了招呼, 才知道他也在現場, 還在我面前盯了我看, 只是我當時大概在專心玩些什麼東西, 沒注意到餅乾.
大會提供了免費午餐便當與茶點, 感恩…
到了下午, 終於等到了精彩的項目. 首先是 羽量級桌面, Jserv 跟 PCMan 一前一後登場, present 的效果挺不錯. PCMan 講話超快, 想必思路也很快吧. Jserv 說話跟動作都很幽默, 不像一般人刻板印象的 geek. 聽了不少這兩位對主流 Desktop Environment 架構上缺失的說明/批評, 只是這個羽量級桌面究竟對那些提到的累贅做了 optimize 我沒完全搞清楚, 可惜時間不夠, 又不好意思提問. 無論如何, 這個桌面的確是 functional, 很省 resource, 也很 responsive, project 本身當然也很有趣.
接下來的 Lightning Talks 也有好幾位同好介紹了他們最近玩的 project, 其中最令我感到有趣的是有位看來像小伙子的仁兄替 google 的 Ctemplate 寫了給 PHP 用的 binding, 也就是 PHP extension. 另外在 Lightning Talks 還發生了一件意外, 一位 speaker 上台的時候不小心鉤到 Jserv 的 notebook 電線, 那台不知道跟了 Jserv 多久的 notebook (從規格上看來已經有點年紀了) 就這樣硬生生從桌上摔到地上, 看來是壽終正寢了. Jserv 請節哀.
FSfoundry.org 特派記者 fr3@K 於台大綜合體育館.