eworldproblems
  • Home
  • About
  • Awesome Ideas That Somebody Else Already Thought Of
  • Perl defects
  • Books & Resources
Follow

Monthly archives for September, 2012

“I want Porsche Turbo.” malware



This post is just to contribute a little to the collective knowledge about a scary Apache hijack that’s currently spreading. The hijack, which you can read about here, intermittently injects an iframe into html responses on all sites the server is hosting, with the apparent objective of running browser exploits to compromise the visitor’s computer.

The document which gets loaded into the iframe is often only code that attempts to run Java applets, load corrupt pdf files, etc. But, there’s a Google-able plain-english phrase that is sometimes contained in the document at the iframe’s src, “I want Porsche Turbo.” If that had produced Google results relevant to my issue, I would have tracked it down a few days sooner. So here’s hoping this post helps somebody else…

Posted in Uncategorized - Tagged Apache, iframe, malware, YWZmaWQ9MDUyODg=

What to do when Ubuntu won’t boot



So my fully updated windows machine recently got had for the 2nd time in my personal experience through innocent browsing of websites in Internet Explorer. (Ironically, the site with compromised content was for my Unitarian Universalist fellowship, which I was visiting because I’d just agreed to take over webmaster responsibilities, making the cleanup my problem, too…) Anyway, I’d recently loaded Ubuntu 12.04 onto a little netbook I own, and was really pleased with what I’d seen there, so I decided it was finally time to put a non-Windows OS on my primary home PC.

Unfortunately, the grub-install scripts packaged with the standard Ubuntu installer got hopelessly hung up when it came to installing grub correctly on my raid-0 controlled by an Intel Matrix raid chip. I searched around, tried all kinds of things that I’ll omit here since they didn’t result in a booting system, and finally (days later) came across the boot-repair application. This thing came equipped with a one-click wonder button to fix the “most frequent problems,” in addition to more advanced options. After days of searching, tweaking, and head-pounding, I was skeptical, but went for the easy thing first and clicked the wonderbutton. Presto, booting system.

Moral of the story: when your Ubuntu box won’t boot, don’t play with grub boot prompts, don’t run rescue installs, don’t rerun grub-install yourself from the live CD, don’t install grub into MBRs on non-raid block devices, or do any of the other things I tried until AFTER you’ve run boot-repair. IMO, the easiest way to do it is to install it over the Internet from a standard Ubuntu live CD.

Makes one wonder why they didn’t just integrate this app’s logic into Ubuntu’s stock installer…

Posted in Linux

Recent Posts

  • Reset connection rate limit in pfSense
  • Connecting to University of Minnesota VPN with Ubuntu / NetworkManager native client
  • Running nodes against multiple puppetmasters as an upgrade strategy
  • The easiest way to (re)start MySQL replication
  • Keeping up on one’s OpenSSL cipher configurations without being a fulltime sysadmin

Categories

  • Computing tips
    • Big Storage @ Home
    • Linux
  • dev
    • devops
    • Drupal
    • lang
      • HTML
      • JavaScript
      • PHP
    • SignalR
  • Product Reviews
  • Uncategorized

Tags

Apache iframe malware performance Security SignalR YWZmaWQ9MDUyODg=

Archives

  • June 2018
  • January 2018
  • August 2017
  • January 2017
  • December 2016
  • November 2016
  • July 2016
  • February 2016
  • January 2016
  • September 2015
  • March 2015
  • February 2015
  • November 2014
  • August 2014
  • July 2014
  • April 2014
  • February 2014
  • January 2014
  • October 2013
  • August 2013
  • June 2013
  • January 2013
  • December 2012
  • November 2012
  • September 2012
  • August 2012
  • July 2012

Blogroll

  • A Ph.D doing DevOps (and lots else)
  • gavinj.net – interesting dev blog
  • Louwrentius.com – zfs@home with 4x the budget, other goodies
  • Me on github
  • My old edulogon.com blog
  • My old GSOC blog
  • My wife started baking a lot
  • Now it's official, my wife is a foodie

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

EvoLve theme by Theme4Press  •  Powered by WordPress eworldproblems