It’s happy again

The Shittening is over!!!

Turns out, well, it was my own damn fault – I had phpmyadmin installed, forgot all about it, and the Chinese spambots were just hammering on that until they got in.

Meanwhile, the city of Redding got hammered by a foot of snow and couldn’t deal. I’d rather take the SQL cleanup over that.

Spam, patience, and the things that test it

As of about 5 AM the shittening happened again. Sorry to anyone who got hit with the same dumbass redirect. I’ve reverted to the WordPress default theme just in case the issue was the theme I was using before allowing SQL injection…

security like a maladjusted microflect entry panel, broski.
the description tag was full of javascript garbage too, wow! (i’ve replaced all references to the offsite script with calls to a dummy file onsite here to sanitize it all quick and dirty.)

Here’s what I know so far…

The whole attack seems to be straight outa China.

When it happens, I’ve seen something basically start hammering on mysql (tons of login failures are produced) which is only open to localhost, so I feel like something is kinda being exploited in a roundabout manner to brute force a password and get in. I’ve changed the passwords to stuff that looks like line noise for now.

No idea what it is but I’ve hidden the old Gallery install for now in case that’s the point of entry.

I’ll be doing the good ol’ nuke and pave soon then reimporting all the content. For now, knock on wood, maybe this will just stay up and uninfected for a couple days until I can get around to that.

Maybe the domain name in use for the JavaShit script – getmyconfigplease -dot- com – is a silly clue, like they’re somehow getting hold of the WordPress config file for this attack? I mean, if that’s obtained by an attacker, they’ve got the database credentials handed to them on a silver platter. If that were the case though I wouldn’t expect to be seeing tons of login failures, just a quick and easy in, spam, and out.

I fucking hate computers 😀

Cleanup done…

Although, the site looks kinda crunchy now. All content should be there and the Javascript links that were inserted to redirect viewers to some credit card spam site now aim at a big fat 404 from http://aktiv-schaum.kg4cyx.net (harmless but, it’ll need a proper cleanup later). I didn’t have the courage to try to use the SQL replace statement to nuke the entire <script>…. string… so I just borked its URL.

Occupational Hazards

…. When you walk into the studio at like 11 PM, NOBODY else is there, and you’re carrying a huge armload of tools… you walk past a studio door where a long quiet outro of a song has been playing out and suddenly THIS COMES BLASTING OUT

….. in other news I now know exactly which sockets are missing from the socket set and just how far down the hallway they can roll when I FREAK OUT AND THROW EVERYTHING TO THE FLOOR IN SURPRISE WTF

I’ve never been to The Beadman. It sounds like a pretty neat store honestly, but damn if THAT part of their radio ad sounds like nothing else reasonable in this known freaking universe

To be the Chief Evangelist?

Found on the box of a Creality Ender 3 printer….

Uh yeah, sufficient levels of fnord are present. I wonder what the instruction manual looks like?

Speaking of things that have leggy frames, Linguini Mountain is evolving into its final form.

And here’s a thing that’s also afraid of wet…. an aluminum field flange…. also scheduled for replacement. I’m really hoping the innards of that combiner contain none of that folderol. My boss told me that the aluminum fittings are common in the cellular industry, where it works fine because they don’t mix aluminum and brass. If only we were so lucky. Fnord.

Mmm, Galvanic Corrosion Burger

I don’t know where they came from but somehow this facility was ~blessed~ by having some aluminum transmission line adapters in use.

Here’s one (a gas block with pressure fitting) sandwiched between flanges made of brass and nickel plated(?) brass…. similar to about 99% of all these fittings I’ve seen in service.

But wait, aren’t those a little far apart in galvanic potential?

Maaaaybe.

To the tune of Sisters Of Mercy – This Corrosion

Gack. Note the first inner lip around where the polymer insulator is seated. This is where the RF connection is actually made. The well around it only holds the sealing ring.

No thanks.

Broadcast Engineer: (n) A person who fixes all the shit the manufacturer fucked up by design.