Comments on: March of the spiders https://habitablezone.com/2013/08/11/march-of-the-spiders/ Fri, 03 Apr 2026 22:41:18 -0700 hourly 1 http://wordpress.org/?v=3.3.1 By: Robert https://habitablezone.com/2013/08/11/march-of-the-spiders/#comment-26103 Robert Tue, 13 Aug 2013 22:49:21 +0000 http://habitablezone.com/?p=36530#comment-26103 we did get hacked--I get those too on my registered account! Son. Of. A. Bitch. I've tightened security over the last few months, starting with the alert about WordPress vulnerabilities, and it sounds like whoever succeeded did so several months ago. That's no reason to be complacent, of course. Time to review security. Damn. we did get hacked–I get those too on my registered account!

Son. Of. A. Bitch.

I’ve tightened security over the last few months, starting with the alert about WordPress vulnerabilities, and it sounds like whoever succeeded did so several months ago. That’s no reason to be complacent, of course. Time to review security.

Damn.

]]> By: podrock https://habitablezone.com/2013/08/11/march-of-the-spiders/#comment-26095 podrock Tue, 13 Aug 2013 21:51:45 +0000 http://habitablezone.com/?p=36530#comment-26095 I've been considering turning registration back on once things quiet down for me personally, but that never seems to happen. Perhaps I'll wait. Any opinions? a few months ago, in the midst of a spam storm, I began to get a lot of spam on my registered e-mail, all of it in ideograms of an oriental nature. Was curious if it was related. They are rare now, once the filtering kicked in to watch for them. Anyone else getting these? I’ve been considering turning registration back on once things quiet down for me personally, but that never seems to happen. Perhaps I’ll wait. Any opinions?

a few months ago, in the midst of a spam storm, I began to get a lot of spam on my registered e-mail, all of it in ideograms of an oriental nature. Was curious if it was related. They are rare now, once the filtering kicked in to watch for them.

Anyone else getting these?

]]> By: Robert https://habitablezone.com/2013/08/11/march-of-the-spiders/#comment-26084 Robert Tue, 13 Aug 2013 18:11:54 +0000 http://habitablezone.com/?p=36530#comment-26084 The pattern, ER, seems to be to search out sites running the WordPress software, with the goal, Tom, of guessing the admin password. I don't think their software takes into account traffic, it just pings sites until it finds one which responds the standard WordPress URL for login. It'll mindless pound us and just as mindless pound wordpress.com and its millions of blogs. The password is probably the key to freely posting spam, and possibly harvesting email addresses to spam. I don't think we're getting any particular attention from the panopticon state, which in any case can freely read the posts and using metadata, track the poster back to his/her IP address and thence to an identity. The Zone <i>has</i> come to the attention of the State security apparatus in the past, but it was pretty routine--I once had to vouch for the person posting some intemperate remarks as just a "hothead" and not any real threat. Speaking of those "national security letters", they're known to have a clause forbidding the recipient from ever even acknowledging receipt of it, let alone disclose the comments. That's pretty evil, in my judgment. So let me go on record right now as declaring that I have never received a national security letter and am not currently gagged by one. I recommend asking me about that periodically, to see if my answer changes because I've become gagged. Silence can communicate a <i>lot</i>. The pattern, ER, seems to be to search out sites running the WordPress software, with the goal, Tom, of guessing the admin password.

I don’t think their software takes into account traffic, it just pings sites until it finds one which responds the standard WordPress URL for login. It’ll mindless pound us and just as mindless pound wordpress.com and its millions of blogs.

The password is probably the key to freely posting spam, and possibly harvesting email addresses to spam. I don’t think we’re getting any particular attention from the panopticon state, which in any case can freely read the posts and using metadata, track the poster back to his/her IP address and thence to an identity.

The Zone has come to the attention of the State security apparatus in the past, but it was pretty routine–I once had to vouch for the person posting some intemperate remarks as just a “hothead” and not any real threat.

Speaking of those “national security letters”, they’re known to have a clause forbidding the recipient from ever even acknowledging receipt of it, let alone disclose the comments. That’s pretty evil, in my judgment. So let me go on record right now as declaring that I have never received a national security letter and am not currently gagged by one.

I recommend asking me about that periodically, to see if my answer changes because I’ve become gagged. Silence can communicate a lot.

]]> By: ER https://habitablezone.com/2013/08/11/march-of-the-spiders/#comment-26048 ER Mon, 12 Aug 2013 17:27:09 +0000 http://habitablezone.com/?p=36530#comment-26048 Are they just trying to harvest email addresses for commercial purposes? Could it be political, an attempt to identify people with the wrong politics? Doesn't their software recognize the low volume of traffic through here? You'd think it wouldn't be worthwhile (politically or commercially) to hack the Zone, not that many people come here. Are they just trying to harvest email addresses for commercial purposes? Could it be political, an attempt to identify people with the wrong politics?

Doesn’t their software recognize the low volume of traffic through here? You’d think it wouldn’t be worthwhile (politically or commercially) to hack the Zone, not that many people come here.

]]> By: TB https://habitablezone.com/2013/08/11/march-of-the-spiders/#comment-26039 TB Mon, 12 Aug 2013 05:07:22 +0000 http://habitablezone.com/?p=36530#comment-26039 Somebody's trying to break in here? Why? Are we talking "posting" passwords or "admin" passwords? Somebody’s trying to break in here? Why?

Are we talking “posting” passwords or “admin” passwords?

]]>