Shoebox hacked!

Hi,

I was just looking at the shoebox site, specifically at “The Game of
Life”. It has been hacked and now contains very explicit links. Take a
look at http://the-shoebox.org/apps/24

I’m sorry if there was a better place to post this which I’ve missed,
hopefully the word will get around…

On Sun, Oct 16, 2011 at 10:51 AM, Abu Y. [email protected] wrote:

I was just looking at the shoebox site, specifically at “The Game of
Life”. It has been hacked and now contains very explicit links. Take a
look at http://the-shoebox.org/apps/24

looks ok here. what links are you referring to?

On Sat, Oct 15, 2011 at 9:51 PM, Abu Y. [email protected] wrote:

Posted via http://www.ruby-forum.com/.

I’m not seeing it.

looks ok here. what links are you referring to?
I just booted into my other OS to make sure I wasn’t hacked… The
inappropriate links were still there.

looks ok here. what links are you referring to?
Sexcams, sexchat…

On Sun, Oct 16, 2011 at 11:14 AM, Abu Y. [email protected] wrote:

looks ok here. what links are you referring to?
Sexcams, sexchat…

i see it. thanks.

Took a quick look and initially didn’t notice the links
The way they are mixed in with the valid text they were not obvious to
a quick scan.

On 2011-10-16, at 4:13 AM, Josh C. wrote:


Posted via http://www.ruby-forum.com/.

I’m not seeing it.

As I see the first paragraph I in Safari:

The invention of this game made John Conway instantly famous, and kicked
off the study of cellular automata. Its conducted on a grid of spaces,
where each space can either be occupied by a Sexcams Sexcam Camsex
critter or vacant. Heres the rules:

Where the 3 words before “critter or vacant.” are links.

Mike

Mike S. [email protected]
http://www.stok.ca/~mike/

The “`Stok’ disclaimers” apply.

Hey everyone-

Anyone can edit an app’s description, so I’ve just edited it to remove
the links. Thanks for letting me know.

I’ve been working with the guy who owns the Shoebox to get it under my
control, but I’d been slacking. Maybe I’ll take the rest of the day to
finish that off.

-Steve

On Sun, Oct 16, 2011 at 08:54:53PM +0900, Steve K. wrote:

Anyone can edit an app’s description, so I’ve just edited it to remove
the links. Thanks for letting me know.

I’ve browsed around the site a bit, and almost every app page has spam
vandalism on it like that, from what I’ve seen. If it’s still there
when
I have more free time, I might start cleaning up some of that, but I
think a more permanent, preventative solution might be in order.

Totally. It’s actually a really old Rails 1.2 app, and so I’m working
on getting it up to Rails 3, shoving it on Heroku, etc. Shouldn’t be a
super big deal.

But yeah, the spam really has to be delt with.

hi Abu,

thanks for bringing this up… i’m forwarding your initial message to
the Shoes mailing list - http://librelist.com/browser/shoes/

  • j

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs