Ummm - what's that all about?

Please pass on any feedback or improvement posts in here. NOT FAULTS
User avatar
Stu
Vice Chairman
Posts: 20241
Joined: Sun Feb 07, 2010 10:00 am
Winner: Subject of Photo of the Year 2012
Most Stupid Fall of the year - so far. 2013
Avatar of the Year 2014
Author the Funniest Thread of the Year 2014
Car Details: D3 HSE
Member Since: 07 Feb 2010
Contact:

Ummm - what's that all about?

Post by Stu » Sat Sep 12, 2015 9:19 am

What's with the smilie after the club logo?
ImageUploadedByTapatalk1442045925.995642.jpg


As featured in LRO and BBC Radio 2!

"It's not a gazebo it's an event shelter"

User avatar
anglefire
Site Admin
Posts: 19326
Joined: Sat May 15, 2010 8:01 pm
Winner: Club Member of Year 2012 & 13
Car Details: Skoda Enyaq IV 80
Member Since: 17 May 2010
Location: Solihull, West Midlands
Contact:

Re: Ummm - what's that all about?

Post by anglefire » Sat Sep 12, 2015 9:49 am

No idea. :shock:

I can't see it here but I'll look when I get home tonight


Mark

Waeco CFX 40
1977 Triumph Spitfire 1500
Skoda Enyaq IV 80
Skoda Superb SE L Ex (Gone)
2006 disco3 SE. Gone but not forgotten.
BMW 530d M Sport Touring. Gone
Member of Admin team and :ugeek:
Disco3Club Photos: Here

DSL
Forum Contributor
Posts: 11127
Joined: Sun Apr 18, 2010 8:58 pm
Car Details: The old muddy banger
Location: Can't make my mind up!! :-)

Re: Ummm - what's that all about?

Post by DSL » Sat Sep 12, 2015 9:54 am

Not on my ipad.

PS nor idog&bone.


If only I could think of something useful to type here!! :(

User avatar
benp
Green Lane Rep
Posts: 10086
Joined: Wed Oct 06, 2010 10:31 pm
Winner: Benner of the year
Car Details: D3
Member Since: 0-10-2010
Location: the little city

Re: Ummm - what's that all about?

Post by benp » Sat Sep 12, 2015 12:48 pm

Normal here :pcwhack: on Android phone


Benner of the year
club dog guard in-out-in-out-in-out-in-out-in-out-in-out-in-out-in-out-in-out-in-out-in-out....club the dog is dead but cant change the signature :(
club the D3 is alive!

User avatar
PillowSmuggler
Committee Member
Posts: 7587
Joined: Wed Apr 07, 2010 8:17 am
Winner: Avatar of the Year 2012
Comedian of the Year 2013
Mechanic of the Year 2014
Clube Member of the Year 2014
Car Details: Disco3 TDV6 HSE 2007
Member Since: 29 Jun 2013
Location: http://goo.gl/maps/WGOsq

Re: Ummm - what's that all about?

Post by PillowSmuggler » Sat Sep 12, 2015 2:54 pm

Just being paranoid but that could be someone trying out a hack to see if they can without being too obvious...

We should
a) check for any new admin accounts and remove any we find.
b) check the logs to see who's logged in and validate with them direct that they actually did log in when the log says.
c) If possible, change the php admin passcodes straight away.#
d) hassle dom into learning how to do this stuff so it's not just all on Mark and Simon :oops:


Regards, Dom.
2007 HSE Auto TDV6
Snorkel, Cyclonic air filter, GNVP Rock Sliders
78Ah Aux, Split charge, FBH Timer/Remote, Mantec sump plate
LED: Strobes, interior, camping, brake, running, sides
New Oil Pump, using 2SO at 1:400.

User avatar
anglefire
Site Admin
Posts: 19326
Joined: Sat May 15, 2010 8:01 pm
Winner: Club Member of Year 2012 & 13
Car Details: Skoda Enyaq IV 80
Member Since: 17 May 2010
Location: Solihull, West Midlands
Contact:

Re: Ummm - what's that all about?

Post by anglefire » Sat Sep 12, 2015 6:08 pm

Nothing in the logs - when did you notice it first Stu?

There are only two skins, that haven't changed for about 2 years. Banner and no banner - though they are made up on the fly - did you notice what banner was displaying - if you have teh banners showing?


Mark

Waeco CFX 40
1977 Triumph Spitfire 1500
Skoda Enyaq IV 80
Skoda Superb SE L Ex (Gone)
2006 disco3 SE. Gone but not forgotten.
BMW 530d M Sport Touring. Gone
Member of Admin team and :ugeek:
Disco3Club Photos: Here

User avatar
PillowSmuggler
Committee Member
Posts: 7587
Joined: Wed Apr 07, 2010 8:17 am
Winner: Avatar of the Year 2012
Comedian of the Year 2013
Mechanic of the Year 2014
Clube Member of the Year 2014
Car Details: Disco3 TDV6 HSE 2007
Member Since: 29 Jun 2013
Location: http://goo.gl/maps/WGOsq

Re: Ummm - what's that all about?

Post by PillowSmuggler » Sat Sep 12, 2015 9:13 pm

I can't see anything wrong in the source with or without the banners enabled.


Regards, Dom.
2007 HSE Auto TDV6
Snorkel, Cyclonic air filter, GNVP Rock Sliders
78Ah Aux, Split charge, FBH Timer/Remote, Mantec sump plate
LED: Strobes, interior, camping, brake, running, sides
New Oil Pump, using 2SO at 1:400.

User avatar
anglefire
Site Admin
Posts: 19326
Joined: Sat May 15, 2010 8:01 pm
Winner: Club Member of Year 2012 & 13
Car Details: Skoda Enyaq IV 80
Member Since: 17 May 2010
Location: Solihull, West Midlands
Contact:

Re: Ummm - what's that all about?

Post by anglefire » Sat Sep 12, 2015 9:43 pm

None of the source files have changed in 2years based on time stamp - which doesn't mean they haven't of course!


Mark

Waeco CFX 40
1977 Triumph Spitfire 1500
Skoda Enyaq IV 80
Skoda Superb SE L Ex (Gone)
2006 disco3 SE. Gone but not forgotten.
BMW 530d M Sport Touring. Gone
Member of Admin team and :ugeek:
Disco3Club Photos: Here

User avatar
Stu
Vice Chairman
Posts: 20241
Joined: Sun Feb 07, 2010 10:00 am
Winner: Subject of Photo of the Year 2012
Most Stupid Fall of the year - so far. 2013
Avatar of the Year 2014
Author the Funniest Thread of the Year 2014
Car Details: D3 HSE
Member Since: 07 Feb 2010
Contact:

Re: Ummm - what's that all about?

Post by Stu » Sun Sep 13, 2015 7:22 am

I only noticed it yesterday. At first I thought it was some sort of display issue but I did a few refreshes and changed pages and it remained. However it's not there now.


As featured in LRO and BBC Radio 2!

"It's not a gazebo it's an event shelter"

User avatar
MrClayton
Elected Club Member
Posts: 2110
Joined: Wed Nov 14, 2012 7:46 pm
Car Details: Not a Disco!
Location: Planet Earth

Re: Ummm - what's that all about?

Post by MrClayton » Sun Sep 13, 2015 7:44 am

I'm wondering if another app on your device could be altering the page? (like Skype frequently does with phone numbers in web pages)

fwiw - because the server console is only accessible over an encrypted connection using public/private key authentication and no passwords are allowed, the chances of someone compromising the server through logging into it are practically impossible*.

I've checked the logs and only myself and Mark have connected to that server in the past week.

What that basically means (massive security bugs in Linux excepted) is that had anyone compromised the server they would have had to do it through very primitive methods (normally file uploader type scripts or badly set permissions) which wouldn't have been able to control the file times. I've looked for anything in the web root on this server with a modified date in the last 7 days and there's nothing at all suspicious. The index page of the main site (not the forum) was changed but that coincides with Mark logging in so I expect he was updating the events list or something.

All in all - a bit odd but doesn't look like anything to worry about. If you see it again, try and view the source of the page and send it so we can see exactly how the character is appearing.

(*I say it that way because the likelihood of public/private key encryption being broken is mathematically improbable but not strictly speaking impossible although for all practical purposes with the keys we use it is impossible. I also believe that the only people with keys to the server will ensure their keys are kept safe so I'm happy we don't have a problem!).

Now - I'm going back to watching racing and crashing at the Nurburgring :-)


"The trouble with quotes on the Internet is that you never know if they are genuine" —Abraham Lincoln

Post Reply