Rubberslug Down?

[kathpatty]

I get "No web site is configured at this address."

[MyBaby]

I get "website not found", too. Maybe they are updating it?

[sensei]

Got a message from Jason via Facebook:

"Ugh, I really don't have time for this right now. Shutting it down to see if it's something easy."

Hackers suck.

[noisywalruforgothislogin]

It's back up and fixed.

This is basically why I've really really wanted to get rid of old stuff even if the new stuff hasn't cloned the old feature exactly yet. It's for our own safety. I missed deleting some stuff that wasn't from the previous revision... but in fact from the original version of the site. Yes, there is (was, as of a few minutes ago) parts of the original 2001 version of Rubberslug buried deep away where only Google could find it.

I took some screenshots for nostalgia sake and then vaporized it. If I'm correct that it's the old stuff getting exploited, then this shouldn't be a problem anymore. The new version is a world of difference in terms of security. It may be missing some features and I still need to fix a bunch of bugs, but at least (afaik) it doesn't leak like maple syrup through a wicker basket. (Aside: I love inventing new analogies!)

I will get back to work on it as soon as I can. I assure you that I have as much more emotional investment in it as you do and I'm forever grateful, but right now I'm trying to lock down some funding for my new startup (!) which is really exciting but time-consuming as well. For anyone out there who is a tech geek, feel free to ask me about it. (http://www.pitchbroker.com)

Please let me know immediately if anything bad like this crops up.

[ZombieBunny]

It's back up and fixed.

This is basically why I've really really wanted to get rid of old stuff even if the new stuff hasn't cloned the old feature exactly yet. It's for our own safety. I missed deleting some stuff that wasn't from the previous revision... but in fact from the original version of the site. Yes, there is (was, as of a few minutes ago) parts of the original 2001 version of Rubberslug buried deep away where only Google could find it.

I took some screenshots for nostalgia sake and then vaporized it. If I'm correct that it's the old stuff getting exploited, then this shouldn't be a problem anymore. The new version is a world of difference in terms of security. It may be missing some features and I still need to fix a bunch of bugs, but at least (afaik) it doesn't leak like maple syrup through a wicker basket. (Aside: I love inventing new analogies!)

I will get back to work on it as soon as I can. I assure you that I have as much more emotional investment in it as you do and I'm forever grateful, but right now I'm trying to lock down some funding for my new startup (!) which is really exciting but time-consuming as well. For anyone out there who is a tech geek, feel free to ask me about it. (http://www.pitchbroker.com)

Please let me know immediately if anything bad like this crops up.

Thank you very much for your hard work ^_^ Your awesome!

[MyBaby]

Jason, thank you for your dedication and hard work on RS. I enjoy RS very much! RS started me collecting cels!
bad english...

[sensei]

I'm glad it wasn't anything really complicated. As I write up my ethnography, I constantly stop and am amazed at how complex the hardware/software infrastructure of this society has become with such modest capitalization. That's thanks to the devotion of you and many other volunteers who keep this comfy briar patch of interlacing communication links working, day after day.

Alas, the volunteer/homegrown nature of it makes it a natural for professional hackers to try to bring down...

[Angelic-Lair]

Looks like RS has been hacked again.

Does anyone have Jason's email address?

[JWR]

Looks like RS has been hacked again.

Does anyone have Jason's email address?

jason@orchidflux.com

[Angelic-Lair]

Thanks, JWR.
Maybe someone else could email him?
We just tried to but our Yahoo blocked the email and suspended our sending privileges temporarily. Something about the recipient's email address possibly being linked to spam.

[sensei]

I'll pass on the message via Facebook as I did last time. That raised him pretty quickly. PS, like last time, individual galleries seem unaffected, as I've been doing some minor gallery maintenance without any problem, using both my account page and the public pages. Hopefully it will be a minor glitch as before.

[zerospace]

Ouch. Looks like like RS got hit with this, based on what I see:

http://community.websense.com/blogs/sec ... tunes.aspx

[noisywalruforgothislogin]

Okay, so I dug a little deeper to clean this up. Clean again. Let's see if it sticks this time.

Went through file by file and tried to delete anything on the server that isn't necessary. The only place I haven't cleaned up (extensively) is in the stuff that requires a password. That stuff *should* be fine also, but I'm positive that this is/was a direct result of old code still present on the website. I found a few candidates for "WTF was I thinking when I wrote this" that were about 8-9 years old. That stuff has been deleted.

I was pretty aggressive with the file deletion warpath. There's been some stuff that I wasn't 100% positive was unused, so if you see any missing images on the site let me know. Some of the stuff I vaporized was related to anywhere you see real-time image resizing on the site. (Not the thumbnail maker... hard to explain... just let me know about red X's if they show up.)

It brings a smile to my face that they got iTunes also. The downer here is that I have a demo for my real job at 10 this morning so I must get some sleep for now.

[sensei]

Thanks, Jason. I went through some of the older parts of my gallery and saw no immediate problems except the old one where "curly quotes" now show up as odd sets of characters. But that's been an issue before, and it's not univerally present, so I think that's unrelated to the present issue.

It's a shame that the current attacks target churches and community-based sites such as RS and not just corporation sites, but I guess the natural habitat of criminals is the vulnerable and not just the wealthy.

[cutiebunny]

Looks like RS got hit again. Instead of Lizamoon, now it's Tadygus.

Anyways, stay away from the main RS page.


I sent Jason an e-mail but I don't use Facebook, so I can't send him a message there.