SailNet Community - Reply to Topic

   Search Sailnet:

 forums  store  


Quick Menu
Forums           
Articles          
Galleries        
Boat Reviews  
Classifieds     
Search SailNet 
Boat Search (new)

Shop the
SailNet Store
Anchor Locker
Boatbuilding & Repair
Charts
Clothing
Electrical
Electronics
Engine
Hatches and Portlights
Interior And Galley
Maintenance
Marine Electronics
Navigation
Other Items
Plumbing and Pumps
Rigging
Safety
Sailing Hardware
Trailer & Watersports
Clearance Items

Advertise Here






Go Back   SailNet Community > Welcome to Sailnet > Announcements and Suggestions Box > Malicious Script - Be Careful
 Not a Member? 


Thread: Malicious Script - Be Careful Reply to Thread
Title:
  

By choosing to post the reply below you agree to the rules you agreed to when joining Sailnet.
Click Here to view those rules.

Message:
Trackback:
Send Trackbacks to (Separate multiple URLs with spaces) :
Post Icons
You may choose an icon for your message from the following list:
 

Register Now

In order to be able to post messages on the SailNet Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
Please note: After entering 3 characters a list of Usernames already in use will appear and the list will disappear once a valid Username is entered.
User Name:
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in

Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.



Click here to view the posting rules you are bound to when clicking the
'Submit Reply' button below


Additional Options
Miscellaneous Options

Click here to view the posting rules you are bound to when clicking the
'Submit Reply' button below


Topic Review (Newest First)
04-14-2010 07:08 AM
SW329xl
Quote:
Originally Posted by administrator View Post
there are only two servers in our cluster. both are scanned daily for any viruses and are clean. The problem occurs from scumbags posting messages with nasty links.

I will tighten up the registration process over the nest few days to check a database of known spammers before they're allowed to register.

this should correct the situation and at the same time we'll remove the visitat code to see if that helps at all.
Cool. You might want to look at using Akismet or Mollom to filter postings as well. They are incredibly effective at stopping spam and malware from getting into the system. It looks like there is an existing plug in for Akismet. I know there have been requests for a Mollom plugin (my personal preference), however I don't think one exists yet.

Akismet Anti-Spam - vBulletin.org Forum

When I viewed the same page twice, I would get malware warnings only some of the time. In the past that has pointed to something that rotates naturally such as ads or servers in the cluster, however it could certainly be just the nature of the malware in this case as well.

In any case, thanks for the work cleaning it up and locking the bad guys out. Fighting this stuff is always a pita and rarely recognized.
04-13-2010 06:00 PM
JohnRPollard Thanks, Admin!!
04-13-2010 05:56 PM
administrator there are only two servers in our cluster. both are scanned daily for any viruses and are clean. The problem occurs from scumbags posting messages with nasty links.

I will tighten up the registration process over the nest few days to check a database of known spammers before they're allowed to register.

this should correct the situation and at the same time we'll remove the visitat code to see if that helps at all.
04-13-2010 01:04 PM
SW329xl
Quote:
Originally Posted by JohnRPollard View Post
I've now had that same warning window pop up several times on Safari.

Folks, I have sent an urgent note to Admin to take a look at this. Hopefully we'll here back soon. Apologies.
Just got this message for the first time. It appears to be very intermittent. In refreshing the same page/thread, the warning disappeared. The bad script is not called directly by the page, but appears to be getting pulled in through another script that the page pulls in. I did not get a chance to isolate what script is pulling in the bad one, but my first guess (just a guess) would be some ad unit that runs periodically. Second guess would be the damn visistat code, and they have an infection in a single server within their cluster. Third guess, you have one server in a cluster which is infected in your own environment.
04-13-2010 08:22 AM
JohnRPollard
Quote:
Originally Posted by smackdaddy View Post
Just got the same warning screen in Chrome after hitting "New Posts". Here's the offending site:

rek.twilightparadox.com

Same as the one in the pic above.
I've now had that same warning window pop up several times on Safari.

Folks, I have sent an urgent note to Admin to take a look at this. Hopefully we'll here back soon. Apologies.
04-12-2010 08:43 PM
smackdaddy
Quote:
Originally Posted by johnnyandjebus View Post
Hello all

I am currently running google chrome for my browser, and it came up with the following msg when I tried to visit sailnet. Any reason to be concerned?

Just got the same warning screen in Chrome after hitting "New Posts". Here's the offending site:

rek.twilightparadox.com

Same as the one in the pic above.
04-12-2010 05:09 PM
hellosailor tager-
Every time I've checked, CERT and SANS and all the other top-level names say that UNIX systems are attacked on an equal basis with Windows. "However, linux does get less " You may get less of one thing or another, but every time you conect to the internet, there are folks scanning the DSL IP pools, the cable IP pools, and even the dial-up IP address pools, looking for machine to hack into. Wrong OS for that hacker? No problem, they'll sell you IP address to someone who can use it and work with your OS. This is big business, probably on a par with sex slavery and drugs. The script kiddie next door is the least of the problems.

Of course a lot of the problems can be stopped if the neophyte in front of the computer just read up and engaged security options. That means no Adobe Flash Player (a security risk conveniently packaged with entertainment options), no active script technologies, and a whole batch of "NO!" options engaged in most browers. And nuisances like UAE enabled in Vista and Win7 systems.

Or there's the easier solution: Get hacked, run a zombie, and get shut down by your ISP. Some folks are screaming bloody murder about that--but I'd just as soon see those folks simply banned from the internet for a year or two. That might get their attention and stop their "reckless driving" habits.
04-12-2010 01:11 AM
tdw
Quote:
Originally Posted by bluwateronly View Post
First off fuzzy, I did not post to tell you to fix it just was trying to help. Your tone was not called for seems you are a bit on edge or something about this.
Oi, now hang on there a moment or two.....I havn't accused you of anything whatsoever. Twernt nuffink in my post that in any way shape or form was negative towards you....nuffink I say....not guilty m'lud.

Seriously, I wasn't giving you a hard time, not at all. Merely pointing out that (if you didn't know already) clicking anywhere on a pop up is likely to kick start the little bugger and on top of that Norton is rubbish. It is too you know? Utter crap. Once was wonderful but alas no more. An over priced resources hog that is out performed by a bunch of free stuff you can download from Cnet.

So..sorry for offending but it was never my intention. Indeed even rereading my previous post I cannot quite see what you are getting at. Guess I should have inserted a plethora of smileys.

Cheers

td
04-11-2010 11:02 PM
deniseO30 anything is from Google may have a redirecting virus ( unrelated search windows will start popping up) Clicking on anything that looks like a warning or some anti virus that you don't have may have a "rootkit" virus. most Antivirus programs can't find them once they get on your HD. I had to get another HD. these things are way beyond the average users abitilty to remove. I certainly don't have the skills.
04-11-2010 10:34 PM
tager Okay, so linux isn't secure, but since each distro has less than 1% of the OS market, can't we expect there to be about zero viruses written for it?

I think you are right, linux is no more secure than windows. However, linux does get less malware, adware, spyware, popups, and viruses. Just because there aren't as many written for it.

So pragmatically, even though it is less secure, it is also less at risk.
This thread has more than 10 replies. Click here to review the whole thread.

 
Posting Rules
You may post new threads
You may post replies
You may post attachments
You may edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On


All times are GMT -4. The time now is 04:43 AM.

Add to My Yahoo!         
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.
SEO by vBSEO 3.6.1
(c) Marine.com LLC 2000-2012

The SailNet.com store is owned and operated by a company independent of the SailNet.com forum. You are now leaving the SailNet forum. Click OK to continue or Cancel to return to the SailNet forum.