Facebook login phishing

Lately I’ve seen a few facebook posts that look like this:

fb-phsh-1

Generally it posts something about interesting facebook features or links to adult-ish blog post. When navigate to that link, it’s a regular facebook post. Similarly for links to blog post, it’s also a normal blog post. However they require you to click another link in order to obtain what is being offered:

fb-phsh-2

Here, the link given is http://teenvl.biz/teenml/login. When open this link, it shows a phishing facebook login page.

fb-phsh-3

Note: DON’T enter your login information there!

Be careful, always see the URL address before you enter any login information, on any website, especially e-commerce sites

Dragonball comics on iPad

Dragonball comics can be downloaded at http://www.realitylapse.com/manga/dragonball.php.There are two types of downloads – chapters or volumes, volumes are combination of several chapters. Better download the volumes, since downloading each chapter will take longer time.

I’m using SideBooks app to view the comics on iPad. The files can be easily transferred to iPad via iTunes shared folder.

itunes-dragonball

Or if you’re using Fedora, it’s automatically detected as mobile device & by using Nautilus it’s as easy as copying files into SideBooks folder inside the iPad.

nautilus-ipad

Kpop Idol Groups International Fan Forum

Let’s take a look at different aspect of Kpop. Here’s some analysis of a few Kpop idol groups international fan forum sites. 20 sites are selected randomly, all are using IP.Board except one using WordPress:

soshified
Soshified (SNSD)
karaholic
Karaholic (Kara)
bigbangvip
BigBangVIP (Big Bang)
2oneday
2ONEDAY (2AM & 2PM)
sjworld
SJ-WORLD (Super Junior)
wgspectacle
WG Spectacle (Wonder Girls)
tiaradiadem
Diadem (T-ara)
ultimateadora
Ultimate Adora (Miss A)
mightysistar
MightySISTAR (Sistar)
affxtion
Aff(x)tion – f(x)
iheartfx
I heart f(x) – f(x)
visualglow
Visual Glow (Rainbow)
shineee
SHINee Forum International (SHINee)
nolimitinfinite
No Limit Infinite (Infinite)
codeexo
CODE:EXO (EXO)
tsundercover
TS Undercover (B.A.P)
unbreakable6
Unbreakable6 (B.A.P)
b2strising
B2ST RISING (BEAST)
mblaqattack
MBLAQAttack (MBLAQ)
girlsdaydaily
Girl’s Day Daily (Girl’s Day)

Since majority fan forums are using IP.Board, so let’s do some summary on the statistics shown on the site:

5 highest number of posts:

  1. 5344703 – Soshified
  2. 1561663 – SHINee Forum International
  3. 1487358 – SJ-WORLD
  4. 1098778 – 2ONEDAY
  5. 612347 – Karaholic

5 highest posts per member:

  1. 32.76 – 2ONEDAY
  2. 25.51 – WG Spectacle
  3. 21.08 – SJ-WORLD
  4. 20.54 – SHINee Forum International
  5. 20.34 – Soshified

5 highest most online users:

  1. 19826 – Soshified
  2. 1031 – SJ-WORLD
  3. 1359 – Diadem
  4. 1398 – SHINee Forum International
  5. 1574 – MightySISTAR

I try to find the highest percentage of most online users by comparing with total registered users, however most online users counter is including anonymous users too. So here’s the 5 highest percentage of most online users (which is not very accurate):

  1. 121.3% – Visual Glow
  2. 24.98% – MightySISTAR
  3. 23.42% – Unbreakable6
  4. 8.39% – TS Undercover
  5. 7.54% – Soshified

Now let’s get technical. Disclaimer: these info are retrieved by inspecting HTTP header & using network tools available online, no hacking or cracking involved.

PHP versions: 10 sites using version 5.4.7, while one site each using version 5.3.24, 5.3.23, 5.3.10 and 5.2.17.So, hosting providers that still using PHP 5.2, please upgrade.

Server: 10 sites using Lighttpd (these sites seem to be hosted by same hosting provider), 5 using Apache, 3 using Nginx and 1 using Litespeed.

Soshified is the only one hosted by AWS and has Cloudflare enabled.

14 sites are gzip-encoded – web pages are compressed, which results in smaller size & faster transfer.

Domain registrar: 7 sites registered with Namecheap, 6 with GoDaddy, 2 with eNom and one site each registered with Bluehost, ReDeHost, HostGator, domainname.com & NameSilo.

Yum & RPM database corrupt

Got this error when try to update

# yum update
error: rpmdb: BDB0113 Thread/process 12509/140477588522816 failed: BDB1507 Thread died in Berkeley DB library
error: db5 error(-30973) from dbenv->failchk: BDB0087 DB_RUNRECOVERY: Fatal error, run database recovery
error: cannot open Packages index using db5 -  (-30973)
error: cannot open Packages database in /var/lib/rpm
CRITICAL:yum.main:

Error: rpmdb open failed

This error caused by pressing Ctrl+C to cancel the yum progress before this, which corrupt the RPM database.

Fixed it by deleting __db.00* file in /var/lib/rpm

Google Play Store updated UI for Gingerbread

playstore-2013-05-06-102022

playstore-2013-05-06-101958

playstore-2013-05-06-101936

New version of Play Store implements UI based on latest Android version on Gingerbread (Android 2.3). Overall, the design emphasis on cleaner look, larger thumbnails, and updated UI elements such as action icons & flat color. App detail page still maintain existing layout, with larger thumbnail & more paragraph spacing.