- This topic is empty.
-
AuthorPosts
-
September 6, 2006 at 6:58 pm #704779
Anonymous
InactiveThis thread rocks!!!!!!
You go get’em guys!!!
:chearlead :chearlead :chearlead :chearlead
September 6, 2006 at 7:45 pm #704782Anonymous
InactiveYes, it really does rock :Partier:
Incredible how much shit can be turned up if the right people are put to work. Unfortunately, I can´t really contribute anything at the moment but I will head over to the general forum and ask a smart ass question that may be of interest to you sly.gif
September 6, 2006 at 8:04 pm #704785Anonymous
InactiveIt’s worth it to keep reporting these sites, even if they don’t all come down quickly, and even though more are added daily. The end result will hopefully be that google will want to preserve the integrity of their serps and begin to work on a new algo that will render old domain spaming useless.
I think google puts far too much emphasis on age of a site, anyway. While it is (was?) a useful guideline for determining a website’s worth, it’s no longer as accurate as it once was, thanks to blackhat exploitations.
September 6, 2006 at 10:18 pm #704800Anonymous
InactiveHey Everyone,
After reviewing Google results for gambling terms today I must say it looks like it is getting worst. This asshole is bumping everyone down including CFC. I am hoping Google can get control of this soon as it is hurting many here at CAP.September 6, 2006 at 11:04 pm #704806
vladcizsolMemberGuys we potentially have a quick and easy solution to this particular BHer
Ok, if you go to the sites he is jamming up Google with you will find most of them are using a specific content management system:
It appears that this bastard found an exploit and is using that to load guest pages on thousands of sites using the Plone CMS.
Assuming he wasnt the author of the software I am hoping that by contacting Plone and reporting whats going on they can issue an update to all users and close this breach/exploit.
Boom overnight the problem goes away.
:fencing:September 6, 2006 at 11:09 pm #704807Anonymous
InactiveProfessor wrote:Guys we potentially have a quick and easy solution to this particular BHerOk, if you go to the sites he is jamming up Google with you will find most of them are using a specific content management system:
It appears that this bastard found an exploit and is using that to load guest pages on thousands of sites using the Plone CMS.
Assuming he wasnt the author of the software I am hoping that by contacting Plone and reporting whats going on they can issue an update to all users and close this breach/exploit.
Boom overnight the problem goes away.
:fencing:Excellent idea Prof! I imagine you have sent out the email already?
September 6, 2006 at 11:23 pm #704809Anonymous
InactiveHa, I knew this was special! That explains the return2india links.
They should be able to take care of this or at least get a bunch of geeks to shoot down his sites in seconds.
September 6, 2006 at 11:28 pm #704810
vladcizsolMemberNo I havent written them yet, but I think the more emails they receive reporting the problem the better :wink-wink
Also it wouldnt hurt if the word was spread on the webmaster message boards like SEO Chat and Webmaster World :smoker: :phone:
September 6, 2006 at 11:37 pm #704815Anonymous
InactiveHaven’t looked at plone idea being exploited, Plausible maybe? I will ask my guru’s about this one. greek39
September 6, 2006 at 11:48 pm #704818
vladcizsolMemberLook at the pages in Google and it will slap you in the face its so obvious:
#1
genres.syr.edu/Members/judyaustin/casinos-2.html
strip it to: genres.syr.edu/Members/#2
bioinfo.mbi.ucla.edu/Members/zackandy/casinos-6.html
strip it to:bioinfo.mbi.ucla.edu/Members#4
tiesv.org/Members/keithlena/casinos-1.html
strip it to: tiesv.org/Membershttp://www.google.com/search?hl=en&lr=&rls=GGLG%2CGGLG%3A2006-19%2CGGLG%3Aen&q=free+casinos
#1
genres.syr.edu/Members/judyaustin/casinos-5.html
strip it to: genres.syr.edu/Members/#2
bioinfo.mbi.ucla.edu/Members/karenjoy/casinos-5.htmlSimilar pages
strip it to: genres.syr.edu/Members/#3
oooauthors.org/Members/loribrad/casinos-3.html
strip it to: oooauthors.org/MembersIf you strip down almost any of the sites that are suddenly appearing you will find they all use a CMS system. Some have customized the skins, but many havent bothered and you can see its Plone
September 6, 2006 at 11:56 pm #704819Anonymous
InactiveI agree there was an exploit of plone. It was fixed today and things should be back to normal in a few days.
here’s the link http://plone.org/news top entry slect read more.
greek39
September 7, 2006 at 12:06 am #704821
vladcizsolMemberYep, good catch Greek, I didnt check news!
Cool Beans! Boy I wish these were all this easy:
Quote:The plone.org web site is currently being hit with multiple spam requests from various sources (on the level of a DDoS attack), and we’re currently cleaning up the mischief. If the site is slow for you, we apologize.
There’s several things going on at the moment, it seems:Spammers are trying to use plone.org as a redirection engine (fixed)
After removing the spam, we have an excessive amount of “not found” 404 pages, so we had to disable the helpful error message for a more CPU efficient version (in place for now)
Several individuals had started aggressive download (wget) scripts on the web site (they now get a nice firewall message)
There was a very aggressive RSS aggregation script hitting all our RSS feeds every few seconds, originating somewhere in China (now blocked)
A Russian IP posing as a Microsoft search bot was continously fetching non-existing pages
When it rains, it pours.
We hope to have normal service restored shortly, and apologize for the slowness. If there are short outages, it is because we are adjusting the site configuration to better cope with the current abuse.
Many kudos to the people helping out in getting the site up on its feet again: Alec Mitchell, Wichert Akkerman, Geoff Davis, Alan Runyan.
— Alexander Limi
September 7, 2006 at 12:07 am #704822Anonymous
InactiveGreat work, Professor. I feel a real sense of community in this forum !!!!
September 7, 2006 at 12:54 am #704824Anonymous
InactiveExcellent work Professor! Thank you very much for this find.
:capmiami:
September 7, 2006 at 1:17 am #704825Anonymous
InactiveNice work Professor, didn’t occur to me it could be an exploit. I should have checked on this. This would explain when trying to Map the site I was getting 404’s all the time. Those RRS feeds are highly vunerable to exploits of this nature, I never use them. Thanks for relieving me of some stress!
In any case I would consider this case closed. greek39
-
AuthorPosts