[Moin-user] Question about spam
Maurice Rabb
Mr at MauriceRabb.com
Tue Feb 20 23:28:58 EST 2007
Hello,
I have a question about a spam attack to my site a few days ago.
On my RecentChanges page I noticed an unexpected change to a page.
My wiki is configured such that one cannot make changes unless one is
registered. However, anyone can register.
So I saw a new user EthaDecoud had added the following page:
http://fragrant.dyndns.org/MoinMoin_configuration
and added a bunch of porn links. However, the big surprise was the
following at the top of the page:
* On Line 428 of multiconfig.py change
{{{
('name', _('Name'), "text", "36", _("(Use
Firstname''''''Lastname)")),
}}}
to
{{{
('name', _('Name'), "text", "36", _("(Use Firstname Lastname)")),
}}}
I had made this change to my multiconfig.py file. I am using a Mac
so it is located at:
/Library/Frameworks/Python.framework/Versions/2.4/lib/python2.4/site-
packages/MoinMoin/multiconfig.py
Apparently the permissions allowed outside users to read that file
but not write it. (Mercifully!)
So my two questions are:
1) How did this person/robot find/know the change I made to
multiconfig.py?
2) How can I better protect my computer and wiki?
Thank you!
Maurice
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/moin-user/attachments/20070220/473d9e7b/attachment.html>
More information about the Moin-user
mailing list