Gang,
We have recently been hacked by someone who thought it would be fun to click each and every "Report a Dead Link" link in our list of 1900 links. We received over 1500 deadlink reports before we could get it stopped. My solution was to eliminate the link in the link.shtml page in templates. I did this by commenting it out rather than a direct removal. I rebuilt all the pages and verified that all the "Report a Dead Link" references were removed.
Well, here we are a few weeks later and we're getting them again. So I completely removed the commented text from links.shtml and I removed the linkdead.cgi from the admin directory. Hopefully this will stop them permanently. We will no longer use this module.
However....
Has anyone heard of someone that might have created some sort of robot that could have done this? Is there a way to do this to someone's site automatically? I can't imagine why and I can't imagine anyone wanting to spend the time to report 1500 deadlinks considering they would have to click each one, wait for the confirmation page, hit their back button then continue. That would take way too much time.
Also, in case the hacker is here listening and learning...we have your IP addresses.
Richard Bilger
RBilger@MERGInet.com
MERGInet Medical Resources
http://www.merginet.com
We have recently been hacked by someone who thought it would be fun to click each and every "Report a Dead Link" link in our list of 1900 links. We received over 1500 deadlink reports before we could get it stopped. My solution was to eliminate the link in the link.shtml page in templates. I did this by commenting it out rather than a direct removal. I rebuilt all the pages and verified that all the "Report a Dead Link" references were removed.
Well, here we are a few weeks later and we're getting them again. So I completely removed the commented text from links.shtml and I removed the linkdead.cgi from the admin directory. Hopefully this will stop them permanently. We will no longer use this module.
However....
Has anyone heard of someone that might have created some sort of robot that could have done this? Is there a way to do this to someone's site automatically? I can't imagine why and I can't imagine anyone wanting to spend the time to report 1500 deadlinks considering they would have to click each one, wait for the confirmation page, hit their back button then continue. That would take way too much time.
Also, in case the hacker is here listening and learning...we have your IP addresses.
Richard Bilger
RBilger@MERGInet.com
MERGInet Medical Resources
http://www.merginet.com