Much ado about scripting, Linux & Eclipse: card subject to change


Damn scriptkiddies

It's funny. You leave your password the same thing - stupidly - for 3 years, and nothing happens. Then one day you decide to get smart, update it to something longer and safer, and boom, you get hacked a couple weeks later and turned into a PayPal phishing scam site. So, I'm blowing away's blog and moving it here, and will be redoing that site entirely in the coming months. If anyone knows where I can post to a public CVS so that I can provide PHP script source w/o the danger of some scriptkiddy using it that source viewer script to do something malicious, please let me know.


Anonymous said...

Any chance you could repost this



the zip seems corrupt.

nickb said...

Yeah, that's wierd. Every time I upload it, it doesn't transfer completely. Anyway, I've opened a sourceforget project to house this stuff, so when that's ready I'll let you know.

nickb said...

Ok, so turns out I'm a dumbass. Uploading w/ gftp apparently means EITHER ascii or binary, and it's not smart enough to figure out that .zip = binary, so I was truncating the files when uploading. Anyway, the zips are here. I've added a sourceless jar plugin, if you're just looking to USE it, but not develop it. Oh, and if you ARE looking to develop with this plugin, let me know and maybe we can work together on a newer/better release.

Anonymous said...

you might want to look into cross site scritping attacks some of the sites you seem to have done are vulnerable to this.