Star Seeker (jurann) wrote,
Star Seeker
jurann

YiffyLeaks Discussion

I want to talk about YiffyLeaks here.

Dunno what YiffyLeaks is? Let me explain what I have heard... Apparently this guy Arcturus used the recently leaked Gizmodo/LifeHacker password list and applied it to a bunch of FA admin accounts. And one of them was cracked. Apparently, as I had always suspected, all FA admins have access to all notes by all users, even if they have been deleted. So this guy got into an admin account, and proceeded downloading the notes of hundreds of users completely undetected. He built a simple site to post the notes he siphoned along with some simple search routines to find notes, and began posting them up a la WikiLeaks style with a few new users' notes posted every day.

Well, I was in the process of learning who my friends really are today, and suddenly the search function broke, and then a reload of the main page is now showing a US Dept. of Justice SEIZURE notice saying that the site's been seized in accordance with US Copyright and Immigration enforcement divisions of the DOJ based out of the New York field office.

EDIT: Okay, so I have learned that Arcturus just got the notes database from lulz.net and wrote a nice web interface for browsing and searching them. I don't know who actually cracked an FA admin account to begin with, might have been anon. Still, shame Arcturus took down his site cuz it was really convenient for reading/searching the notes.

So what are people's thoughts? About YiffyLeaks in general, about FA's role in things, about the seizure, etc?
  • Post a new comment

    Error

    Anonymous comments are disabled in this journal

    default userpic
  • 40 comments
Why did the Gov do that, anyway? o.O
Nobody's sure the gov't did it or not yet. Kinda hard to tell. I've been pointing network tools at things to poke at it and try to verify one way or the other right now. Seeing some weird routing and server response stuff going on, and honestly I dunno how the gov't works about server seizures, so I don't know if this is expected behavior that validates that the gov't is involved, or if the guy at YiffyLeaks is just doing it for attention or what.

theflamecrow

6 years ago

jurann

6 years ago

protocollie

6 years ago

jurann

6 years ago

Your tax dollars at work! I've always thought that "internet privacy" was a misnomer, so this rapid action by the gov't surprises me. I really think they've got better things they could worry about.
Well, at this point, nobody really knows if the gov't really got involved or it's just a hoax to boost conversation/attention/etc. I've been trying to verify it, but the results I'm seeing aren't really... Anything but speculative. As I said above, I don't know how the gov't genuinely operates in regards to server seizures, but the server's Apache process is responding normally (with site temporarily unavailable response) when you telnet into it and do a simple HTTP GET without any client information in the headers.

Deleted comment

Deleted comment

Yeah, that's kinda where I'm at. I'm still somewhat on the fence about it and trying to figure out what to make of it. If NOTHING else, reading through all of those notes really helped me realize who my friends and enemies are. Too many people made the mistake of trusting FA with private thoughts, opinions, bullshit stories, and secrets. I'd kind of like to see YiffyLeaks back up and running, though I can understand that if the info was obtained through cracking an admin account how that may have been illegal and justify the seizure. So it's hard to say. All speculation right now.
BTW - Got your Twitter follow note, I'm just wondering if we've met or know each other someplace online or something under another name or the like. Typically I only follow or friend folks I know a bit, just to keep things at a sane dull roar on my social networks. ;D

Deleted comment

jurann

6 years ago

Deleted comment

jurann

6 years ago

Just another annoyance on the web and another reason to not to reveal sensitive stuff on the web.
Really? I dunno, for me the information that's been posted has been very useful in seeing into some people's character and motives and selfishness. I think it's been terribly useful and I kind of wish more people were this transparent normally instead of requiring a hacker to dig it up and put it out there. There's plenty of apparently unflattering information about me released in this stuff, but ironically I'm feeling a lot more safe and secure about it than a lot of others (esp Dragoneer) should, because even in private notes I carried myself honestly and diplomatically like I always do. I never put any secrets in FA notes, because I try not to ever HAVE secrets to begin with. I'm pretty open and honest.
Thinking about your statement, your probably right. You have nothing to worry and fear about if your open, honest, and straight with folks. Even if they do leak info about you, what are they gonna do? fault you for being fair to people?

Re: Yiffyleaks

jurann

6 years ago

Re: Yiffyleaks

da_well

6 years ago

I poked around YiffyLeaks briefly, trying to figure out what notes caused some of the main topics of conversation recently. I couldn't find anything.. as I didn't feel like scrolling through 9999 pages of notes.

I'll have to find somebody who knows what caused all this harumphing and ask them what's up.
Well, it seems the MAIN issue people are latching onto are the notes between/about Dragoneer and Zaush... Though I think that ANYONE who's a major player in furry fandom who used FA for anything has something up on the table there, and has secrets or opinions or things that are fairly unflattering that got released on YiffyLeaks. So different people are focusing on different portions. I, for one, learned a lot about who my friends really are, and that a LOT of people pay me politeness and lip-service despite harboring a rather nasty opinion of me.

ryuchitoran

6 years ago

jurann

6 years ago

ryuchitoran

6 years ago

Huh, if you go to just Malicelabs.com, it's still up and about. My guess is your assumption about it being a ploy is correct, it's just a JPG file, nothing else.
There's some weirdness going on with the webserver though on the Yiffyleaks site, if you do some poking at a lower level. I did some manual HTTP GET requests over telnet to that server without using any client headers and got some typical Apache responses for a "site temporarily unavailable", but when you do an HTTP request with full client headers you wind up getting a generic, non-headered response back with the DOJ seizure thing. It's totally possible to hack Apache to give that kind of response, but it FEELS more like a brute-force traffic-level override. The thing that doesn't make sense is why you only get it when you supply valid client headers and not otherwise. Point is, in the end, all we can do is speculate. But it's still weird.

I'm hoping that YiffyLeaks comes back up, because the messages are terribly fascinating and revealing.

Deleted comment

I'm not interested in "moving on" until I feel that folks have had a chance to discuss the angles openly and get thoughts and notions off their chests. I'm not even sure what *I* personally make of it yet, so I'd like to discuss it until the horse is at least dying, if not cold stone dead.

But anyway, as far as breaking the law, I've been involved in gov't seizures and interruptions over online criminal activity, and NEVER in my experience has the gov't shut down a physical site or server or daemon or the like without FIRST arresting the responsible party for the system. From my understanding, Arcturus isn't the one who cracked an FA account and DL'd all the notes, he just got them from lulz.net and made an interface for browsing them more easily. Why the US DOJ or any other gov't agency would go after THAT site instead of the actual responsible party, and take down the site without apprehending the 'offender' is what doesn't make ANY sense. The data's loose, people have it on their hard drives and it's being hosted in untouchable locations to boot, so the data's out there and not going to disappear. Why would the gov't even TRY to contain it and control it, esp since it's such a small-time thing and not a commercial site and etc.? Fuck, you know how many times I've caught people trying to hack COMMERCIAL sites I've worked on, and the gov't has a typical response of "we might look into it if we get time or things get more severe, but please don't bother us with your trouble unless things get a lot worse". The gov't doesn't really have much desire to get involved with internet drama, even if someone cracked an admin account and stole/hosed the data on a site. It's happened to MUCH bigger sites and the gov't has done FAR LESS on those situations. So why this?

wolfwings

December 21 2010, 00:32:38 UTC 6 years ago Edited:  December 21 2010, 00:38:00 UTC

The 'yiffyleaks' seizure is bogus, Arcturus just yanked the site down due to traffic/web-server load and slapped that up to stop people rooting around much/at all. I say that because of a couple things:

  1. Such seizures take an entire TLD, not a sub-domain. MaliceLabs.com is still functioning correctly. This example of an actual seized domain will show you what I mean. They take the whole TLD and wildcard the hell out of it.
  2. The site's IP hasn't changed to http://74.81.170.110 which is the actual 'seizure parking' IP address used by the US federal government.
  3. He didn't actually make it post a <title> tag in the HTML page returned now. Another 'derp, wrong web-code' moment that ties into the below as to where he sourced the image/page-source from:
  4. Finally, the image he used is a well-known fake that was created by FilesPump.com several months back. Note the incorrect legalese and use of the master U.S. Immigrations and Customs Enforcement badge instead of the correct sub-branch Homeland Security Investigations which deals with actual customs-related investigations and was created for these sorts of things. This Yahoo! Answer details the FilesPump.com a bit, and is where the image being used was sourced from as far as I can tell.
Excellent information, thank you VERY much for dropping this in here. =D A lot of folks have suspected it's a hoax either to draw attention or curtail bandwidth usage, though I personally admit it's a pretty good idea. Maybe I should offer to host it on my servers for a while. ;D
but wolfwings, this isn't nearly dramatic enough! how are they going to drag this out for three more days making a big deal out of something that's just an admin being an admin!
Yeah, I know, right? *laughs* I'm just explaining this to rumor-squash with a sledgehammer, mostly. Just like I'm laughing at the folks panic-deleting their notes, and all that. It's amusing to me. =^.^=

funkicarus

6 years ago

jurann

6 years ago

funkicarus

6 years ago

jurann

6 years ago

funkicarus

6 years ago

jurann

6 years ago

wolfwings

6 years ago

I like pie.
Have a kilodigit of it then! =^.^=

3.141592653589793238462643383279502884197169399375
10582097494459230781640628620899862803482534211706
79821480865132823066470938446095505822317253594081
28481117450284102701938521105559644622948954930381
96442881097566593344612847564823378678316527120190
91456485669234603486104543266482133936072602491412
73724587006606315588174881520920962829254091715364
36789259036001133053054882046652138414695194151160
94330572703657595919530921861173819326117931051185
4807446237996274956735188575272489122793818301194
91298336733624406566430860213949463952247371907021
79860943702770539217176293176752384674818467669405
13200056812714526356082778577134275778960917363717
87214684409012249534301465495853710507922796892589
23542019956112129021960864034418159813629774771309
96051870721134999999837297804995105973173281609631
85950244594553469083026425223082533446850352619311
88171010003137838752886587533208381420617177669147
30359825349042875546873115956286388235378759375195
77818577805321712268066130019278766111959092164201
Um... I think he meant pi*e, not plain pi. ;D Then again, his equation's not entirely clear, and I'm not sure what liking an equation has to do with expression or practical use of any equation. ;)