[00:09] that doesnt look good at all [00:10] to me either [00:10] its a saved copy of a launchpad bug with a payload in an iframe [00:10] someone from club said the second link posted tries to pulls stuff from "unvalidatedinput.com" [00:10] it does [00:13] i hope those two idiots aren't still sending this stuff as PM [00:14] i cant figure out what the payload is [00:16] the apt:// url is huge [00:16] apt:// followed by 98K of junk [00:17] for me it just gave an error when i tried to open it from chromium [00:19] looks like someone posted it to the forums [00:19] and it was removed by admins [00:23] popey: [01:22:45] LjL: unvalidatedinput.com traceroutes to readme.kabul2600.org (193.105.134.88) [00:24] newish site too [00:26] private go-daddy reg, useful [00:26] i invited kevinf311-lap here since i was tired of relaying back and forth :P [00:26] hah [00:26] 2600 is a hacker thing isn't it? [00:26] any idea who owns it? [00:26] yeah, ish [00:27] they go through a "domains by proxy, inc" and godaddy [00:27] site just came up in the last day or so [00:27] want me to check out the other one, too? [00:28] go for it [00:29] meh, it just has the same unvalidatedinput.com thing [00:30] looks like the apt: is in an iframe somewhere [00:30] trying to hunt it down [00:30] yeah, 98K of crud [00:30] ooh thunderstorm [00:31] interesting, there's a tumblr stat tracker counter in there too [00:32] yeah [00:32] that apt: bit is hugely long [00:33] anyone recognize what the encoding might be? [00:33] file doesnt know what it is [00:33] i... i want to take this into work [00:36] what exactly does apt have access to on the system when it runs? [00:36] well, its not apt [00:36] it's apt-url, which is python. [00:37] oh, that's more fun [00:37] but it gets passed to ubuntu software centre, which can be given sudo access [00:37] [01:33:00] http://ubuntu.bigblackarabiandicks.tk/ <- he posted it again [00:37] maybe time to ban these bitches [00:38] perhaps [00:38] ugh, UK ISP [00:38] that is a much funnier url [00:39] where was is posted? [00:39] #ubuntu like the other two [00:39] so this .tk tld is technically "Tokelau" but reg sites can use it for the public too [00:40] the general glabal public, that is [00:41] but yes, I'd remove [00:41] jrib: maybe you can remove incog and murdox? they're posting malicious stuff [00:41] though we're still trying to find out how malicious [00:42] i like that their names are "incog" and "murdox" [00:42] but it's not good at all for sure [00:42] got them! [00:42] kunwon0 in #archlinux [00:42] been k-lined before too [00:42] kunwon* (except for the real kunwon) are gnaa spammers [00:43] lncog, inco9, kunwon88.. [00:43] bigbloggers actually comes up as gnaa [00:44] that last url has been on ubuntuforums before [00:44] well, that was "fun" [00:44] * popey goes to bed [00:44] thanks :) [00:45] well, i think y'all have closed the loop on that [00:45] o/ [00:47] i banned them from the floodbots account [00:48] can't take this shit, sorry [04:37] FloodBot3 called the ops in #ubuntu-ops-monitor (exploit) [04:37] FloodBot1 called the ops in #ubuntu-ops-monitor (exploit) [04:37] FloodBot2 called the ops in #ubuntu-ops-monitor (exploit) [07:46] #ubuntu happening of the day: someone pasteflooding the channel with the output of sudo apt-get install pastebinit [07:58] hah [08:10] nhandler: okay, I've come around to your opinion on +q's being good. Watching people join and part in an attempt to evade them is cathartic. [08:13] rww: The pastefail is almost zen in its stupidity. [10:06] why I'm in the unregged chan? [10:08] here too?!?! [10:13] gotta go, you can query me or send me a memo :) [11:37] hi. have the malicious linkers showed up again? [11:37] and if you don't know what i'm talking about, ask me as it may be important [11:38] also, any irc council member around? [11:40] I see no more .tk links since last night [11:43] LjL: Im here. /msg'd [15:08] * genii-around puts on a fresh pot of coffee [15:25] * mneptok needs cup #2 [15:26] * genii-around slides mneptok another mug [15:35] Heads up to the #xubuntu ops: LarsT's in there being his usual self. [15:36] also, if he's still banned from #ubuntu, he's ban-evading there. I don't have time to check. [15:39] FloodBot2 called the ops in #ubuntu-ops-monitor (flood (16)) [15:39] FloodBot1 called the ops in #ubuntu-ops-monitor (flood (16)) [15:39] FloodBot3 called the ops in #ubuntu-ops-monitor (flood (18)) [16:04] Kuifje111 called the ops in #ubuntu () [16:06] Interesting username on N3M35I5. [16:13] FloodBot1 called the ops in #ubuntu-ops-monitor (flood (18)) [16:13] FloodBot3 called the ops in #ubuntu-ops-monitor (flood (16)) [16:13] FloodBot2 called the ops in #ubuntu-ops-monitor (flood (16)) [16:42] Shadowww|RDP called the ops in #ubuntu () [16:43] Again [16:45] * Pici hrms [16:56] I always have to wonder when people who I don't ever remember seeing say hello. [17:13] Ugh. I take it we decided to give LarsTorbenn another round in #ubuntu. [17:14] I don't know what to do with him [17:14] iceroot called the ops in #ubuntu (passss) [17:14] Ban him on sight? He's a persistant annoyance and ban-evades constantly, I don't see why we put up with it or believe the crap he says in here about "neighbors". [17:15] except he's not ban-evading, because someone unbanned him, because I don't know why :| [17:15] rww is becoming an ljl [17:16] why banned ? [17:16] Pici [17:16] i think there should be a policy about neighbors and cowworkers that is pretty much: too bad. [17:16] LarsTorbenn: Because you said you wouldn't do what you just did. [17:16] what did i? [17:16] ask a question ? [17:17] CarlFK: My de facto one is "If we can't tell the difference between your behavior and your "neighbors'", we don't care whether you're telling the truth about them existing." ;) [17:17] LarsTorbenn: Constantly repeat a question, berate other users when they told you they didn't know. [17:17] Pici: szal told me to ask my question again ! [17:17] You completely disregarded the guidelines that you said that you had read. [17:17] Why do you lie me ? [17:17] All the peoples told !ask to me [17:17] Altought I asked my question. [17:17] you also said "shit", "omfg" and stuff [17:17] Then i told it again. [17:17] YOU are are in control of your actions. [17:17] i think you should know the guidelines very well at this point [17:17] Oh yes. omfg. [17:17] its really bad ! [17:17] Or you should be. [17:17] yes it is [17:18] yes it is [17:18] and why can other people pm me ? [17:18] [17:18] considering that you're just as inflammatory in other channels as #ubuntu, I don't think you can blame the specific circumstances here. [17:18] this is IRC. PMs are allowed. [17:18] NO! [17:18] you didnt read the rules [17:18] You're on thin ice already, you should tread carefully. [17:18] LarsTorbenn: i only wrote part of them. [17:18] in the rules stands no pm [17:18] no it doesn't [17:19] nope [17:19] yes there are [17:19] !pm [17:19] Please ask your questions in the channel so that other people can help you, benefit from your questions and answers, and ensure that you're not getting bad advice. Please note that some people find it rude to be sent a PM without being asked for permission to do so first. [17:19] do you mean this "rule"? [17:19] No [17:19] it stands in the rules [17:19] quote, please? [17:19] wait [17:20] !rules [17:20] The people here are volunteers, your attitude should reflect that. Answers are not always available. See http://wiki.ubuntu.com/IRC/Guidelines [17:20] LarsTorbenn: quote from the guidelines? [17:20] Don't cross post your question * Each Ubuntu channel has distinct topic ranging from general Ubuntu chat, to specific Ubuntu technologies. Ask your question in the channel that is most relevant to your query. Don't post in multiple Ubuntu channels or in channels with unrelated topics. To check a channels topic type "/topic". [17:21] LarsTorbenn: which part of that mentions PM? [17:21] and where does that mention private messages? [17:21] * rww steps back [17:21] i meant [17:21] query === KB1JWQ is now known as Corey [17:21] query = private messages [17:21] yes [17:21] but it also equals "inquiry" [17:21] you know, english is english [17:21] in that case, it obviously means "inquiry" [17:22] and the other thing is [17:22] the pms queries are annoying me [17:22] its a criminal offense offense [17:22] ok [17:22] except it's not [17:22] yes it is [17:22] so let's concentrate on your breaking the guidelines instead [17:22] okay [17:23] the only thing where i agree is [17:23] the cursing [17:23] ok, and the cursing alone is enough for a ban at this point, after all the history you have [17:23] and i dont think [17:23] it is serious [17:23] if i say shit or omfg [17:23] i think it is [17:23] no it is not [17:23] and i'm afraid you're not the one to decide [17:24] LarsTorbenn: your behavior is disruptive. the ops get to decide how much is tolerable. [17:24] LjL: http://security.goatse.fr/compiz-denial-of-service-vulnerability [17:24] no but i will write to ubuntu canonical [17:24] feel free [17:24] bye [17:24] and report your behaviour free [17:24] and contact sabdfl [17:24] then we are done here [17:24] please leave this channel [17:24] I note that it's also not acceptable behavior in #xubuntu or the other Ubuntu channels you've been in recently. [17:24] because i say [17:24] !appeals | The correct way to escalate things [17:24] The correct way to escalate things: If you disagree with a decision by an operator, please first pay #ubuntu-ops a visit. If you are still unhappy, please see https://wiki.ubuntu.com/IRC/AppealProcess for the steps you should take. If you feel the need to discuss the channel rules, please contact the ops on IRC or via the email address on the aforementioned page. [17:24] shit ? [17:25] sorry to just paste that at that point [17:25] popey: I like random interjection [17:25] popey: hmm. at least it's not an exploit. [17:25] yeah [17:26] popey: why doesn't it kill my session anyway? [17:26] mine either :) [17:26] IdleOne: ban-evasion ^ [17:26] why do you kick me althoung the problem isnt solved ? [17:27] i dont join ubuntu until the problem is solved yes, but this here is the channel to discuss a boan [17:27] Provee: the only way this problem is going to get solved is if you contact the IRCC [17:27] Provee: because you've said you'd escalate it. please do, and leave us alone. [17:27] popey: Ah. I wasn't running compiz in my VM where I tested it, I guess. [17:27] Provee: were you just here as LarsTorbenn? [17:27] i think it wasnt good the cursing yes [17:27] but i am so [17:27] i am a hothead [17:27] !appeals | Provee [17:27] Provee: If you disagree with a decision by an operator, please first pay #ubuntu-ops a visit. If you are still unhappy, please see https://wiki.ubuntu.com/IRC/AppealProcess for the steps you should take. If you feel the need to discuss the channel rules, please contact the ops on IRC or via the email address on the aforementioned page. [17:27] there is the info you need to contact the IRCC. [17:27] irc-council AT SPAMFREE lists DOT ubuntu DOT com [17:28] does that means [17:28] Please part this channel as there is nothing else the ops team can do. [17:28] irc-council@spamfreelists.ubuntu.com ?= [17:28] yes [17:28] remove the spamfreelist [17:28] and don't paste it in here [17:28] thanks i do not argue with you [17:28] oops sorry yeah. remove the spamfree part [17:28] Provee: I suggest you also talk to someone close to you who you trust. [17:28] but it wasnt in my openion [17:28] ikonia: list is supposed to be there ;) [17:28] to do something wrong [17:28] rww: is it ? [17:28] yes [17:28] ikonia: it's a lists.ubuntu.com address, yes :) [17:29] "Ubuntu IRC Council" [17:29] ooh, popey apologies [17:29] CarlFK why ? [17:29] oops Provee apologies [17:29] yes i am really sorry, but i cant do anything for cursing [17:29] I wonder why we have it obfuscated on the wiki if people keep mentioning it here :) [17:29] careful, popey might shut it down too if you anger him. [17:29] * rww snorts [17:29] * popey allocates funds [17:29] Provee: you seem to have have anger issues. [17:29] i am very very irritable / sensitive [17:30] this is not the place to get therapy [17:30] Provee: we are done now - please leave the channel [17:30] yes thats right [17:30] Provee: We are done. please part. [17:30] so when i will be unbanned [17:30] and what do you mean CarlFK [17:30] when the ircc makes a decision [17:30] Provee:you will not at this time, follow the process you have been given [17:30] i read all guidelines [17:30] should i do it again [17:30] Provee: I am sure you can figure it out. [17:30] Provee: FOLLOW the process you have been given [17:31] Provee: I don't feel the need to explain. [17:31] why cant you unbann me an i promise not to cursing again [17:31] remove him [17:31] enough [17:31] no i go alone [17:31] bye then [17:34] that quick he evaded the ban. setting bans is not going to work with him, either we ban the entire host or figure something else out [17:34] ban on sight works for me [17:34] and fills up the ban list [17:42] "we don't have the means to sort out problems caused by others that are indistinguishable from you." wondering how do define what an op does. "pattern of behavior, judgment, done, please forgive us if we make a mistake, but such is life" [18:05] Pici i need to contact you private query [18:06] or another operator per query [18:07] Provee: you are banned and your persistant abuse of the channels will not be tollerated any further [18:07] please leave this channel [18:07] no! [18:07] i get an lawyer about your privat textes [18:07] ok - please get your lawyers to contact me [18:08] I'll put my address on the letter I'm writing to your ISP - and I can be contacted through that [18:09] Provee: please leave the channel now [18:09] i want to tell with an operator [18:10] no [18:10] I am an operator [18:10] Provee: Please be considerate and follow the Ubuntu guidelines. [18:10] there is nothing to discuss any further [18:10] and I'm asking you to please leave the channel [18:10] i will tell you if i know an lawyer [18:10] and I have told you to ask him to contact me [18:10] and i dont agree with this behaviour what ikonia did in my private [18:10] Provee: and gratuitous legal threats are also not tolerated [18:10] my details are on the comaplaint I'm writing to your ISP - when you get the information from that, you can ask him to contact me [18:11] I'll have the comaplint submitted today [18:11] so you shouldn't have to wait long [18:20] this Tsune person in -ot is a bit weird. says noting but hello from time to time. the only other thing i've seen them says is "i'm hard" [18:21] what ever works for him [18:21] bot maybe? [18:24] IdleOne: best part message [18:24] I just (30 seconds ago) hit "bye" from amazon on that very game [18:25] haha [18:25] buy even [18:25] wow, not sure what I was typing there [18:26] Someone had a Chinese proverb as their quit message and I thought maybe I needed a cool quit message also. Shang Tsung is the first name that came to mind. [18:26] that be the be of how it be [18:27] odd timing to use it after I just hit buy [18:27] ikonia: you were thinking of IdleOne parting :P [18:27] possible [18:27] odd because you think nobody sees what you are buying [18:28] I also quit by accident. Unity has this odd placement of window controls [18:29] ha, unity [18:39] FloodBot1 called the ops in #ubuntu-ops-monitor (qwerty1234 appears to be abusive and has been muted, will need to be UNMUTED MANUALLY) [19:05] hi [19:06] hello [19:06] i really cant believe that. [19:06] what you do is unpossible. [19:06] that is hard to believe [19:06] what are we talking about? [19:07] as you can see on my isp i am the neighbour of larstorbenn [19:07] and he told me all. [19:07] oh dear. [19:07] it is unbelievable [19:07] pampel: if you are not Lars then we have nothing to speak about. [19:07] Please part the channel. [19:07] i am not lars but i dont agree with this [19:08] pampel: we don't have the means to sort out problems caused by others that are indistinguishable from you. [19:08] he sits near me [19:08] pampel: you don't have to agree with us. [19:08] !appeals [19:08] If you disagree with a decision by an operator, please first pay #ubuntu-ops a visit. If you are still unhappy, please see https://wiki.ubuntu.com/IRC/AppealProcess for the steps you should take. If you feel the need to discuss the channel rules, please contact the ops on IRC or via the email address on the aforementioned page. [19:08] that isnt the poin.t. the ban is okay [19:08] that is the info Lars needs to dispute the ops decision [19:08] but the other thing that isnt the problem [19:09] the bann is okay. [19:09] pampel: The point is that we have nothing to discuss. We gave lars a chance [19:09] We explained the consequences and now we are taking action. [19:09] yes its okay i am of an other reason here. [19:09] then please get to it. [19:10] you threat [19:10] with isp abouses and so on [19:10] No we said we are going to report the constant abuse to his ISP. [19:10] yes [19:11] and this is libel [19:11] it is not a threat. Now since this does not concern you I have no obligation to explain it to you. [19:11] its a big slander [19:11] Please part the channel and have a nice day. [19:11] and i can tell you that because i am confronted with the law [19:12] his offers is not to rejoin again [19:12] good. [19:12] is that okay for you [19:12] have a good day. [19:12] okay so the abuse fall off [19:13] not sure what you mean. [19:13] not abouse the isp [19:13] pampel: your behavior and word choice is about the same as Lars. expect the same response. [19:13] and he dont rejoin [19:13] We are not going to abuse anybody. Lars is the one abusing our channel and we told him what we would be forced to do if it continued. [19:14] okay i will tell him [19:14] stop that [19:14] cu [19:14] bye [20:50] hi, i use irccloud and i think there may be a ban on that domain or something because i always get "cannot send to channel" in any of the ubuntu rooms [20:51] uhm i don't see a ban on you, not an obvious one anyway [20:52] LjL, i'm on xchat right now b/c it's the only way i can talk to anyone in an ubuntu room [20:52] oh [20:53] LjL, the person that just joined is me. can you check that one? [20:53] yeah web gateways are banned, i'm sorry [20:53] i can set an exeption for now, but next time you'll still be banned [20:53] what?? why? [20:53] that's my preferred irc client [20:53] because they cannot be associated with an IP (sometimes they can, but in that case i'm more than happy to add support for them in the FloodBots) [20:54] People use irc gateways to circumvent bans. [20:54] Is irccloud still free to use? [20:55] that sure stinks for people like me who pay for irccloud [20:55] jmcantrell_: If its paid only, I'm sure that we could come to an agreement with the irccloud folks./ [20:55] who should i tell them to talk to? [20:56] the IRC Council probably [20:56] !ircc [20:56] The Ubuntu IRC Council is the team governance council for the the Ubuntu IRC channels on the freenode network - For serious inquiries please join #ubuntu-irc-council or email irc-council@lists.ubuntu.com - See also https://wiki.ubuntu.com/IRC/IrcCouncil [20:56] I'll send them an email as well with more info/ [20:57] ok [20:57] I know there are some Ubuntu people using irccloud as their prefered irc method. [20:57] jmcantrell_: do you know if the x-srlgyshjlyliktow string you have in your mask is unique for your user? [20:58] I'm guessing that the u324 is unique. [20:58] LjL, hmmm. good question. let me ask them [20:58] is the problem that you need something unique to ban on, should i run amok? [20:58] Essentially. [20:59] People paying for a service are less likely to do that, but not unheard of. [20:59] jmcantrell_: can you try disconnecting and reconnecting jmcantrell so we can see if the string changes? or is it a hassle? [21:00] LjL, no. i want to help you any way i can to resolve this [21:00] one sec [21:01] apparently so, but the u324 does not [21:02] LjL: the x-part of gateways like that is random. bshellz et al are the same way [21:02] if you wanted to set an exempt, it'd be ident@gateway/web/irccloud.com/* [21:02] hmmm [21:03] (and the ident is unique per user, obviously) [21:03] Its a tricky situation. [21:03] jmcantrell_: u324 might be something you set though [21:03] you can't really show the real hostname in whois because irccloud stays connected 24/7 and you just go to it from any webbrowser, as I understand it [21:03] ah [21:03] Right. [21:04] i don't know of a way to set u324 manually [21:04] +e $a:whatever would be another option [21:04] rww: i know how to exempt him personally, but... [21:04] indeed [21:04] yeah, i don't see any options for setting that [21:06] jmcantrell_: well i don't know what to do at the moment, but meanwhile, while you wait for the irc council / irccloud to talk about this, if i'm around feel free to nudge me to set a temporary exempt for you every time you join [21:07] semi-related... are trolls a large enough problem that this kind of a strict policy is necessary? [21:07] jmcantrell_: yup [21:07] jmcantrell_: they are a pretty darned big problem in all honesty [21:07] :-/ [21:08] sucks. irccloud is a really convenient solution for me :( [21:08] Due to the method in which we excempt users, we we can still see users try to rejoin using freenode's webchat after we've banned their normal hosts. [21:08] jmcantrell_: you see, we could set a permanent exempt on you personally, but that wouldn't solve the core issue, and in the unfortunate circumstance anyone ever needed to ban you, they would not understand why the ban isn't working [21:08] LjL, can you exempt me for now? [21:08] jmcantrell_: yes [21:08] LjL, yeah, i understand that [21:08] jmcantrell_: you should be able to speak, try [21:09]