Free State Project Forum

Please login or register.

Login with username, password and session length
Pages: [1]   Go Down

Author Topic: FSP website hacked by spammers  (Read 12942 times)

JasonPSorens

  • Administrator
  • *****
  • Offline Offline
  • Posts: 5402
  • Neohantonum liberissimum erit.
    • My Homepage
FSP website hacked by spammers
« on: July 13, 2011, 08:16:44 pm »

The FSP website has been hijacked by spammers.  It looks as if it could be the notorious iframe exploit. Do a Google search on "free state project" and look at some of the freestateproject.org page titles. You also cannot click through from Google into the website, which is obviously a huge problem.
Logged
"Educate your children, educate yourselves, in the love for the freedom of others, for only in this way will your own freedom not be a gratuitous gift from fate. You will be aware of its worth and will have the courage to defend it." --Joaquim Nabuco (1883), Abolitionism

Jerry

  • Global Moderator
  • *****
  • Offline Offline
  • Posts: 483
  • Next 1000
Re: FSP website hacked by spammers
« Reply #1 on: July 14, 2011, 11:18:48 am »

After Googleing iframe a bit, I see that this exploit has been around a long time. 
Most writers recommend  the security on SMF needs to be tightened as well as the host computer security.
Some web hosting companies are denying the problem. 
Where is the forum hosted?  Are they being helpful?

Logged

JasonPSorens

  • Administrator
  • *****
  • Offline Offline
  • Posts: 5402
  • Neohantonum liberissimum erit.
    • My Homepage
Re: FSP website hacked by spammers
« Reply #2 on: July 15, 2011, 08:07:36 am »

Mary had a website that had malicious code inserted via iframe. Her website was blacklisted by Google before she found out. So the consequences can be pretty serious.
Logged
"Educate your children, educate yourselves, in the love for the freedom of others, for only in this way will your own freedom not be a gratuitous gift from fate. You will be aware of its worth and will have the courage to defend it." --Joaquim Nabuco (1883), Abolitionism

JasonPSorens

  • Administrator
  • *****
  • Offline Offline
  • Posts: 5402
  • Neohantonum liberissimum erit.
    • My Homepage
Re: FSP website hacked by spammers
« Reply #3 on: July 18, 2011, 03:03:56 pm »

:(
Logged
"Educate your children, educate yourselves, in the love for the freedom of others, for only in this way will your own freedom not be a gratuitous gift from fate. You will be aware of its worth and will have the courage to defend it." --Joaquim Nabuco (1883), Abolitionism

JasonPSorens

  • Administrator
  • *****
  • Offline Offline
  • Posts: 5402
  • Neohantonum liberissimum erit.
    • My Homepage
Re: FSP website hacked by spammers
« Reply #5 on: July 19, 2011, 08:56:27 am »

Looks as if the spam issue has been resolved; Google still is wonky - you can't click through directly from a Google link.
Logged
"Educate your children, educate yourselves, in the love for the freedom of others, for only in this way will your own freedom not be a gratuitous gift from fate. You will be aware of its worth and will have the courage to defend it." --Joaquim Nabuco (1883), Abolitionism

Alex Libman

  • Guest
Re: FSP website hacked by spammers
« Reply #6 on: July 20, 2011, 10:53:55 am »

I've been keeping my mouth shut about the security holes I've seen in FSP and FTL/FK hosting infrastructure, and will continue to do so, since the last time I've checked no one wanted to hear it... 
Logged
Pages: [1]   Go Up