« previous next »
Pages: [1]

Author Topic: Spam on Our Front Gate  (Read 9691 times)

Fenrir

  • Rogueliker
  • ***
  • Posts: 473
  • Karma: +1/-2
  • The Monstrous Wolf
    • View Profile
Spam on Our Front Gate
« on: November 02, 2011, 09:08:00 PM »
I think it exceedingly unlikely that Slash put the following markup and code on the front page of the temple. It is suspect, surreptitious, poorly spelled, and grammatically incorrect.

Code: [Select]
<script>if(document.referrer!='htt'+'p://reff'+'erer.c'+'om')document.write('<sp'+'an style=\'disp'+'lay:n'+'one\'>');</script>
If you intresting in sport <a href="http://rxsportmeds.com/">buy steroids</a> you find place where you can find information about steroids
<script>if(document.referrer!='ht'+'tp://5g'+'o.c'+'om')document.write('</sp'+'an>');</script>
Is this left over from an earlier attack? or is the temple compromised?
Logged

Slash

  • Creator of Roguetemple
  • Administrator
  • Rogueliker
  • *****
  • Posts: 1203
  • Karma: +4/-1
    • View Profile
    • Slashie.net
    • Email
Re: Spam on Our Front Gate
« Reply #1 on: November 05, 2011, 01:29:46 PM »
Well... I'm tired of seing this kind of attacks on this host. I wish they fixed the security hole (because I doubt it's an issue with the app setup)

Edit: The classic decode trick, infiltrated into the header template file:

<?php /*c7ac5ac4154b3a495f69b124957bac72_5*/ echo base64_decode("PHNjcmlw...2FuPicpOzwvc2NyaXB0Pg0K"); ?>

Edit2: What I have been unable to stop are unwanted registrations, even with KeyCaptcha and reCaptcha modules installed, even with a custom simple human filter, spambots seem to jump over all. I'm wondering if there's an additional entry point, other than the registration page, that the spambots are exploiting.
« Last Edit: November 05, 2011, 01:34:55 PM by Slash »
Logged

Psiweapon

  • Rogueliker
  • ***
  • Posts: 334
  • Karma: +0/-0
  • Im in ur rougeliekz, pixelling ur tielz!
    • View Profile
    • I Lovemaking Tiles
Re: Spam on Our Front Gate
« Reply #2 on: February 17, 2012, 11:21:12 PM »
Quote from: Slash on November 05, 2011, 01:29:46 PM

Edit2: What I have been unable to stop are unwanted registrations, even with KeyCaptcha and reCaptcha modules installed, even with a custom simple human filter, spambots seem to jump over all. I'm wondering if there's an additional entry point, other than the registration page, that the spambots are exploiting.

Is human-moderated signup an option, tocayo?
(I'm assuming that with human filter you mean something on the order of "you have two chickens and one is critically hit with a vorpal sword, how many heads are now laying about?")
Logged
The invisible hand is a lie, the fiendish dogma of the market cultists. Lest the apostasy grows strong, their blood god will devour each and everyone, pious and infidel alike.

Z

  • Rogueliker
  • ***
  • Posts: 905
  • Karma: +0/-0
    • View Profile
    • Z's Roguelike Stuff
Re: Spam on Our Front Gate
« Reply #3 on: June 05, 2012, 05:30:03 PM »
There is some really weird spam at http://rogue temple.com/hutterite-cult-alberta/ ... (space added to make the link invisible to bots)

Logged

Darren Grey

  • Rogueliker
  • ***
  • Posts: 2027
  • Karma: +0/-0
  • It is pitch black. You are likely to eat someone.
    • View Profile
    • Games of Grey
Re: Spam on Our Front Gate
« Reply #4 on: June 05, 2012, 11:28:55 PM »
That is rather strange, I must say...
Logged
Pages: [1]
« previous next »