About a year ago, I wrote a diary here at the ISC called “Putting the ‘ED’ back in .EDU”. Like most of the stuff I write, it caused a bit of a stir when it was published, because it pointed out that several .edu domains were riddled with compromised machines serving up link-fodder for peddlers of erectile dysfunction (ED) meds. And, oh yeah… I named names. Obviously, something odd was going on here. It was like a single website with two distinctly different, Jekyll and Hyde personalities...
(Somewhere, Robert Louis Stevenson is spinnin' in his grave like a top...) |
Tom 160 Posts Aug 16th 2010 |
Thread locked Subscribe |
Aug 16th 2010 1 decade ago |
Wow. Just...wow. You wonder why people reacted badly to you? Maybe it's your pompous attitude. This is 100% stereotypical 'security guy' attitude. Congratulations, you're a parody. Sure your Google is strong, but I see nothing in the above article to even remotely justify you thinking you're half as awesome as I'm sure you think you are.
What ever happened to SANS? I thought they had professionals working here. Maybe you can let the big kids write the blog articles from now on, k? |
Anonymous |
Quote |
Aug 16th 2010 1 decade ago |
I thought the post was rather witty. Maybe its the Viagra ads that has the previous commenter upset? It's OK we all get older.
Anyways, great post. I have come across quite a bit of this in the past especially in the SMB's. ISC also had a previous post in 2008 here http://isc.sans.edu/diary.html?storyid=5150 Thanks for the great post. |
Tim 9 Posts |
Quote |
Aug 16th 2010 1 decade ago |
I really enjoy reading Tom's diary entries.
I see nothing wrong with appropriate mixtures hilariousness and technical genius. Heck I do it all the time and I think it helps the uptake of potentially dry material Rock on Tom ! |
Steve 2 Posts |
Quote |
Aug 16th 2010 1 decade ago |
I really enjoy reading Tom's diary entries.
I see nothing wrong with appropriate mixtures hilariousness and technical genius. Heck I do it all the time and I think it helps the uptake of potentially dry material Rock on Tom ! |
Steve 2 Posts |
Quote |
Aug 16th 2010 1 decade ago |
I feel the article was both entertaining and informative, personally.
|
Ryan Greenier 3 Posts |
Quote |
Aug 16th 2010 1 decade ago |
Thanks for a great heads up, and yes, I do appreciate the wit!
|
Stephen 1 Posts |
Quote |
Aug 16th 2010 1 decade ago |
It's on Mount Vaea in Samoa that RLS would be doing his spinning. [Wikipedia, of course, which leads to www.samoa.southpacific.org/apia/mountvaea.html] I appreciated the writing style, also.
|
Hal 50 Posts |
Quote |
Aug 16th 2010 1 decade ago |
I'm trying to find where they reacted badly. They're a library. Their "webmaster" may not be able to give him the .htaccess file... because they can't find it. And that's damned funny right there, I don't care you ya are.
The SEO game being played with modrewrite is an interesting but subtle twist on a classic - but now they're applying it to the site owner. I first saw (and used) this specific tactic as a method of rickrolling, initially to target specific people, and then to try to rickroll specific keyword visitors from google/yahoo, waaaay back when RRing was invented. Modrewrite was the technique of choice, as there's no app/platform-specific quirks that php injection (et al) would entail - and it is trivial to roll out, screw up, and rescind, as broad or narrow a scope as you please. "Who was the greatest exploiter ever, and what did they do to earn that title?" "We don't know, and we don't know. They were *that* good." |
Steven 42 Posts |
Quote |
Aug 16th 2010 1 decade ago |
Noneroy: No one "reacted badly" to me. (Except you.) I had a very nice conversation with a perfectly polite gentleman at the library. His site was hacked FAR deeper than simply an alteration of .htaccess, and his time has (rightly) been spent fixing things rather than sending me files. Finally, I'm sorry you seem so offended by what, I thought, was a humorous look at an issue affecting many sites on the 'net.
|
Tom 160 Posts |
Quote |
Aug 16th 2010 1 decade ago |
Ken: I just read the Wikipedia article on RLS and followed the Mount Vaea link. Amazing stuff. Thanks for pointing it out.
|
Tom 160 Posts |
Quote |
Aug 16th 2010 1 decade ago |
Tom,
Without a doubt, you rock! |
BezantSoft 14 Posts |
Quote |
Sep 14th 2010 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!