Temple of The Roguelike Forums

Websites => Temple of the Roguelike => Topic started by: Fenrir on November 02, 2011, 09:08:00 PM

Title: Spam on Our Front Gate
Post by: Fenrir on November 02, 2011, 09:08:00 PM: I think it exceedingly unlikely that Slash put the following markup and code on the front page of the temple. It is suspect, surreptitious, poorly spelled, and grammatically incorrect.

Code: [Select]
<script>if(document.referrer!='htt'+'p://reff'+'erer.c'+'om')document.write('<sp'+'an style=\'disp'+'lay:n'+'one\'>');</script> If you intresting in sport <a href="http://rxsportmeds.com/">buy steroids</a> you find place where you can find information about steroids <script>if(document.referrer!='ht'+'tp://5g'+'o.c'+'om')document.write('</sp'+'an>');</script>
Is this left over from an earlier attack? or is the temple compromised?
Title: Re: Spam on Our Front Gate
Post by: Slash on November 05, 2011, 01:29:46 PM: Well... I'm tired of seing this kind of attacks on this host. I wish they fixed the security hole (because I doubt it's an issue with the app setup)

Edit: The classic decode trick, infiltrated into the header template file:

<?php /*c7ac5ac4154b3a495f69b124957bac72_5*/ echo base64_decode("PHNjcmlw...2FuPicpOzwvc2NyaXB0Pg0K"); ?>

Edit2: What I have been unable to stop are unwanted registrations, even with KeyCaptcha and reCaptcha modules installed, even with a custom simple human filter, spambots seem to jump over all. I'm wondering if there's an additional entry point, other than the registration page, that the spambots are exploiting.
Title: Re: Spam on Our Front Gate
Post by: Psiweapon on February 17, 2012, 11:21:12 PM: Quote from: Slash on November 05, 2011, 01:29:46 PM

Edit2: What I have been unable to stop are unwanted registrations, even with KeyCaptcha and reCaptcha modules installed, even with a custom simple human filter, spambots seem to jump over all. I'm wondering if there's an additional entry point, other than the registration page, that the spambots are exploiting.

Is human-moderated signup an option, tocayo?
(I'm assuming that with human filter you mean something on the order of "you have two chickens and one is critically hit with a vorpal sword, how many heads are now laying about?")
Title: Re: Spam on Our Front Gate
Post by: Z on June 05, 2012, 05:30:03 PM: There is some really weird spam at http://rogue temple.com/hutterite-cult-alberta/ ... (space added to make the link invisible to bots)
Title: Re: Spam on Our Front Gate
Post by: Darren Grey on June 05, 2012, 11:28:55 PM: That is rather strange, I must say...