Someone's been very busy messing with Xanga.
aka: Something BlogBot This Way Comes...
The following list of 381 xanga sites (at bottom) were all created on 12/24. Most automatically redirect to: http://www.xanga.com/home.aspx?user=leox_dicaprio (who may well be a victim).
And the 381 sites have all been used to flame/spam the following sites which made Featured Content today (on the Classic side):
1. | HEROIC HOMOSEX TO LOVE ANOTHER MAN AS AN EQUAL AND A MAN WIT... Total eProps: 733 | Total Comments: 255 Posted by Heroic_Homosex - 12/26/2004 at 1:04 PM |
2. | Naproxen_the_FLOODED9968 has decided that, even though I'm u... Total eProps: 704 | Total Comments: 0 Posted by la_faerie_joyeuse - 12/26/2004 at 11:01 AM |
3. | [Read entry] Total eProps: 404 | Total Comments: 255 Posted by rainina11thetime - 12/26/2004 at 10:19 AM |
4. | Xanga Type your first post here, then click "Submit" to publ... Total eProps: 398 | Total Comments: 136 Posted by kitten42 - 12/26/2004 at 3:54 PM |
5. | HEROIC_HOMOSEX BECOMES BUBBA'S FUCKTOY After a year in priso... Total eProps: 247 | Total Comments: 150 Posted by leox_dicaprio - 12/26/2004 at 6:46 PM |
6. | NOW I remember why I hate being home... Fuck this.. If you w... Total eProps: 220 | Total Comments: 0 Posted by Ash_o_leigh - 12/26/2004 at 1:57 PM |
7. | 5am just back from the hospital... shit i seriously hate dea... Total eProps: 194 | Total Comments: 113 Posted by eli371 - 12/26/2004 at 9:57 AM |
The #1 site above appears to have been actually the flamer/spammer himself (themselves). All the rest appear to be victims.
The rate of commenting on la_faerie_joyeuse (#2 above) was about 18 per minute for 22 minutes. This suggests that there was a mechanism used for auto-commenting. The pattern of the offending site names (see below) and the fact that they were all created on 12/24 also suggests that an auto-creation mechanism was used to generate them. The only other explanation could be a team of deviants working in cahoots.
Update: Here's the auto-populator's self-glorying explanation of his (their) activity left on leox_dicaprio 's latest post:
And, yes, they are anonymizing-proxying as they say since they bypassed my own self-designed PHP detection scripts which would have recorded them otherwise (I got hit earlier, too.)
Reflective later Update: These autopopulators are right: they've committed no crime. They did not hack but mere opportunized on a Xanga sign-up and commenting vulnerability. Yes, they violated Xanga's 'Terms of Service' so that each individual site can be shutdown. But I believe they can generate more newer sites faster than old ones can be shutdown. So I think that they'll just abandon 2 or 3 day old 'known' sites and create auto-generated fresh ones to work their will. They face only 4 practical restrictions: 1) the limit of their own CPU power - their computer(s) and anonymous proxies can only crank out so much in a given time, 2) Xanga recoding its sign-up and commenting to prevent blogbot injection, 3) A slip-up where they were not stealthed and Xanga, by logs, can crosshair-bead the non-anonymoused source IP, or 4) Me, finding out who the fuck they are and storming their quisling teeny-bopping pad and smashing the fuck out of their server with a sledge-hammer equal to or in excess of the mass of their combined brains. heh
I think you can conjure up the implications: Xanga should be very concerned. (And I have contacted John, et.al. 3 times already.)
Here's the list. It appears to be partial. InvisibleAng's comment here refers to other names not even in this list. And elsewhere, others - more names. So an actual comprehensive list, if constructed, would almost certainly be in the 1000s.
Recent Comments