PissTek Again

We had some crazy winter storms and the site I lovingly call Shit on a Shingle lost power. When the power came back after a couple days, the station didn’t.

Found this little derpshit howling away as usual with no output. Front panel buttons and remote interface were unresponsive. Power cycled it and the controls came back but still no output. I warmed it with a space heater for a while and if fully returned to service.

I know some transmitters don’t like extreme cold, but this thing had only reached about 34 degrees at the lowest.

It had a really shaky start too, the front panel indicated 1750 watts forward 0 reflect, but no PA current, and it wasn’t audible on the air. I set it to 500 and it was audible for about a block down the road. As incoming snowstorms chased me from the site I heard it just gradually chatter and wheeze back onto the airwaves.

Hello, Transmitter Fairy, what do I have to leave under my pillow for you to leave me a nice Nautel VS2.5?

Please don’t disturb the kitty on the pillow.

This is, incidentally, the same site where the combiner horror used to live. Yeah, that one that never worked at full power until the whole system was sent out for service for a few months then exploded after less than a day on air.

It’s happy again

The Shittening is over!!!

Turns out, well, it was my own damn fault – I had phpmyadmin installed, forgot all about it, and the Chinese spambots were just hammering on that until they got in.

Meanwhile, the city of Redding got hammered by a foot of snow and couldn’t deal. I’d rather take the SQL cleanup over that.

Spam, patience, and the things that test it

As of about 5 AM the shittening happened again. Sorry to anyone who got hit with the same dumbass redirect. I’ve reverted to the WordPress default theme just in case the issue was the theme I was using before allowing SQL injection…

security like a maladjusted microflect entry panel, broski.
the description tag was full of javascript garbage too, wow! (i’ve replaced all references to the offsite script with calls to a dummy file onsite here to sanitize it all quick and dirty.)

Here’s what I know so far…

The whole attack seems to be straight outa China.

When it happens, I’ve seen something basically start hammering on mysql (tons of login failures are produced) which is only open to localhost, so I feel like something is kinda being exploited in a roundabout manner to brute force a password and get in. I’ve changed the passwords to stuff that looks like line noise for now.

No idea what it is but I’ve hidden the old Gallery install for now in case that’s the point of entry.

I’ll be doing the good ol’ nuke and pave soon then reimporting all the content. For now, knock on wood, maybe this will just stay up and uninfected for a couple days until I can get around to that.

Maybe the domain name in use for the JavaShit script – getmyconfigplease -dot- com – is a silly clue, like they’re somehow getting hold of the WordPress config file for this attack? I mean, if that’s obtained by an attacker, they’ve got the database credentials handed to them on a silver platter. If that were the case though I wouldn’t expect to be seeing tons of login failures, just a quick and easy in, spam, and out.

I fucking hate computers 😀

Cleanup done…

Although, the site looks kinda crunchy now. All content should be there and the Javascript links that were inserted to redirect viewers to some credit card spam site now aim at a big fat 404 from http://aktiv-schaum.kg4cyx.net (harmless but, it’ll need a proper cleanup later). I didn’t have the courage to try to use the SQL replace statement to nuke the entire <script>…. string… so I just borked its URL.

Occupational Hazards

…. When you walk into the studio at like 11 PM, NOBODY else is there, and you’re carrying a huge armload of tools… you walk past a studio door where a long quiet outro of a song has been playing out and suddenly THIS COMES BLASTING OUT

….. in other news I now know exactly which sockets are missing from the socket set and just how far down the hallway they can roll when I FREAK OUT AND THROW EVERYTHING TO THE FLOOR IN SURPRISE WTF

I’ve never been to The Beadman. It sounds like a pretty neat store honestly, but damn if THAT part of their radio ad sounds like nothing else reasonable in this known freaking universe

To be the Chief Evangelist?

Found on the box of a Creality Ender 3 printer….

Uh yeah, sufficient levels of fnord are present. I wonder what the instruction manual looks like?

Speaking of things that have leggy frames, Linguini Mountain is evolving into its final form.

And here’s a thing that’s also afraid of wet…. an aluminum field flange…. also scheduled for replacement. I’m really hoping the innards of that combiner contain none of that folderol. My boss told me that the aluminum fittings are common in the cellular industry, where it works fine because they don’t mix aluminum and brass. If only we were so lucky. Fnord.