Stuffed Photos

Site - 1 Comment » - Posted on October, 13, 2009 at 8:56 pm

I have recently moved from hosting in America to hosting here in Australia. From a ping of 240ms to 33ms – it’s now lightening quick for me. However, my gallery2 installation had comments turned on, with the default settings, which allowed anyone to post. So of course it’s filled with 1.6G of spam. Subsequently I was unable to export my gallery installation and import it here. I foolishly went into the database and cleared the comments table….which just left a whole bunch of broken foreign keys. I imported what was left and tried to run a database sanity check plugin, but it consumed too much memory and halted….. so now I’m just going to start from scratch.

Sorry for the broken photo links, I’m going to fix them up real soon.

Mad H4x0rs

Site, Software - 1 Comment » - Posted on December, 5, 2007 at 8:14 pm

One of the fantastic things about having a blog that nobody reads is that any anomoly quickly shows up. If I hit up the statistics page for my domain, I see this:

 

Search Keyphrases (Top 10)
14 different keyphrases Search Percent
pps til exe 6 31.5 %
replacing 306 cabriolet hydraulic roof hoses 1 5.2 %
bernard hill 1 5.2 %
everquest midi download 1 5.2 %
replacing 306 cabriolet hydraulic roof houses 1 5.2 %
peugeot 306 cabriolet hydraulic ram 1 5.2 %
vp62 codec download 1 5.2 %
download decode for pps 1 5.2 %
vray plugin rhino error 1 5.2 %
how to fix peugeot 306 cabriolet roof 1 5.2 %
Other phrases 4 21 %

So my site was found 6 times by searching for pps til exe.

Pages-URL (Top 10)
16 different pages-url Viewed Average size Entry Exit
/grandad/feed/ 23 35.17 KB 23 22
/gemmell/replacing-306-cabriolet-hydraulic-roof-hoses/ 17 21.53 KB 11 9
/gemmell/gallery/tmp/download-freeware-.pps-to-.exe.html 11 13.82 KB 6 6
/gemmell/ 7 35.03 KB 3 5
/ 2 1.37 KB 2 2
/gemmell/2007/04/14/goals-dreams-needs-and-lucid-dreams/ 1 16.00 KB 1
/gemmell/gallery/aquaponics 1 20.71 KB
/gemmell/replacing-306-cabriolet-hydraulic-roof-hoses 1 21.53 KB 1 1
/gemmell/gallery/css/base.css.default 1 6.63 KB 1
/gemmell/gallery/tmp/vray-plugin-for-rhino-serial-number.html 1 17.25 KB 1 1
Others 6 16.67 KB 4 2

The number three most visited page on my domain is “gallery/tmp/download-freeware-.pps-to-.exe.html”. That is,  someone has used an exploit for Gallery V1 (or maybe just my mismanagement) and is using my site to host their illegal goodies. I’ve since deleted all traces of Gallery v1 and am hoping Gallery v2 is more robust. However, if I’d had more than say 100 people viewing legitimate things on this site, those hack entries wouldn’t have made it into the list and I’d have been none the wiser. Finally, I have found a good reason to be unpopular.