This Blog was vulnerable, like many blogging, wiki, and CMS softwares which rely on the PHP XMLRPC library.
I fixed it with the new patched version.
Check out the project site http://phpxmlrpc.sourceforge.net/
But I can't be asked for now, so I've only hacked a couple of fixes to the code to save myself from comment spam mainly, and fix some other security vulnerabilities here and there.
Sure, there might be more, but which software does not have those ?
After all, this is a rather old thing…
So I finally changed the layout of this site. Not that it is now THAT different. Much of the code stayed the same, but I updated the layout to some more modern stuff and got rid of the FRAMES structure that was still hanging (haunting ?) there….
I also adjusted some things I did not like and that were not "consistent" such as part of the frames being served off muscetta.com and the blog engine was instead served off muscetta.org….
In the end it still looks crap, but *I* like it 🙂
Well, since I was quite busy cleaning and cleaning their stupid comments over and over again, over all of the old posts, I finally found some time the other day to put my hands in the code of this blog, and implement some checks on dates, so that the older posts are not "commentable" anymore – well, I should refine it, as the link to comment is there anyway… but it checks when you submit and it tells you to buzz off…. so I bet you can comment-spam me on this new post but at least I won't have to go through all of the old ones (which was a very tiring task…).
I am sorry but, since they did it again, I have removed the possibility to post HTML tags into a comment – this way, if the reason of their idiotic comments was that of increasing their ranking in Google, this won't at least be accomplished.
I prefer to leave anonymus posting capabilities to my visitors, but I don't like helping spammers doing their crap.
I just realized that some guy, believing to be funny, used my "comment" link under the blog posts to fill in a lot of crap – some sort of spam message promoting crap like the ones that fill our inboxes lately, with links to their site, in order to (I believe) raise their ranking in Google or something like that. They have been sitting there for some days – I did not closely monitor the server for a while – I just relocated, and been busy with the new job and everything.
You really can't leave them a lone a minute!
I have read of people writing this sort of crap on wikis too, and I just don't get why people should be so lame to use a public faciliy to write their crap. Possibly is the same sort of people who writes on walls…..
The logs were reporting the posts happened from two IP addresses:
220.127.116.11 and 18.104.22.168.
I now cleared them. If they continue I will have to deactivate the possibility for people to answer/comment to posts…. which would be a pity.