Archive for the ‘Administrative’ Category

pwned

Thursday, January 11th, 2007

Tonight, this site was hacked by a fellow named c0rpman from Russia. Unclear on the exact mechanics of the hack, but there was a vulnerability in wordpress that I didn’t update to protect against right away, so I suspect that is a big part of what happened. There was a very interesting script left laying around; my passwords were changed. All the posts were deleted, and this message was left on my blog homepage:

D3FAcED!bY

..c0rp|mAn|...

D3fAcED bY hSw team--->#197297672

c0rpmAn

I had an interesting chat with c0rpman as well, as he contacted me via IM to tell me that my site was hacked. We discussed how he did it and why, and possible measures to prevent it from happening again. I suppose I am a target and there are other WordPress vulnerabilities that have yet to be disclosed. Fortunately, my web hoster (pair.com) has a backup of the database from about a week ago, and what you are seeing now is what they could piece together from the backup. I had some problems with very old posts–posts older than about March of 2006–not making it due to some MySQL database error, but I think it is fixed now. The pair.com techs have been very patient, helpful and responsive! I’m definitely not a PHP or MySQL expert, so this has been a learning experience on multiple axes. Comments and posts made within the last week are lost, but I’m willing to live with that.

For the record, I did try using a tool called warwick to recover some of my data from web caches, and many readers have offered their cached feeds and data to me. I really appreciate everyone’s help. It’s very supportive and touching in a time when I’m feeling vulnerable and definitely needing help. However, in the end it is better that my eyes are open, rather than ignorant. It’s not the first time I’ve been hacked, and it won’t be the last, but every time I learn something new and important. It is also comforting to know that there are so many helpful friends and strangers out there. Thanks to everyone for helping me sleep well tonight!

Site Down

Thursday, November 16th, 2006

The site was down for about 20 hours because the web hoster’s (pair.com) server crashed and they firewalled the IP address. If you sent any email to the bunniestudios.com domain, it may not have gone through.

Site Updated

Monday, July 17th, 2006

Ever hear the phrase “Tragedy of the Commons?“. That’s pretty much what spam is doing to the free/open portions of the internet these days. For example, this site has been hit with a spate of spam–something on the order of 50 to 100 spam comments a day for the past couple of weeks–and it’s been pretty crippling dealing with that. So, I have tried upgrading to the latest version of this blog software (scary!), and using a new anti-spam plug-in. If you do find that something is broken or missing, please do post a comment and let me know! Hopefully with this new anti-spam plugin, comment posting can go back to a less strictly moderated form, and I’ll be spending less time combing through spam messages.

A new name that ware is just around the corner…a combination of the July 4th holiday weekend and a very busy week after that catching up on work has delayed the contest a bit, but never fear! I have wares to post and winners to declare, and it should be up within the next two days. You may notice some mild stylistic changes to my posts as well, as this new blog software seems to have a mind of its own when it comes to formatting things.

syllable.org

Thursday, September 22nd, 2005

I’ve been a bit delinquent this month about the new Name that Ware contest; it’s coming this weekend, I promise. Toorcon plus a tape-out and two additional conference papers have really put a damp on my schedule lately. In the meantime, I have blacklisted all comments with the term “www.syllable.org” as the joe-jobed site has been sending about ten comment spams a day (and growing), which is taking some time to clean up. If you have a legitimate need to post a link to syllable.org try to spell out the URL with spaces in it instead of linking to it.

Form of: BLOG!

Saturday, March 19th, 2005

You know, it takes a lot for a hardware guy to adopt some fancy web-thing, but it turns out blogs have come of age to the point where even I can figure ’em out. bunnie studios, LLC is the latest incarnation of my moonlighting consultancy. I’ve had to re-incorporate and re-start from my previous company (I used to be a part of Xenatera, but that had a rocky end), and as part of the process I decided to join the modern world and use a blog-style web page that better reflects how I maintain my material.

I’ll be adding content and rolling over more of my old materials, but for now, if you are curious about what I do or where I came from, check out my old web page.

Happy surfing!