| Time |
Nickname |
Message |
|
00:01
π
|
|
Sk1d has joined #archiveteam-bs |
|
00:04
π
|
|
Pixi has joined #archiveteam-bs |
|
00:07
π
|
|
chimyatta has quit IRC (Read error: Connection reset by peer) |
|
00:09
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
00:11
π
|
|
Sk1d has joined #archiveteam-bs |
|
00:56
π
|
|
VADemon has quit IRC (Quit: left4dead) |
|
00:57
π
|
|
VADemon has joined #archiveteam-bs |
|
01:12
π
|
godane |
we can brute force the mp3s on mp3lizard.com : www.mp3lizard.com/download_2.cfm?id=6856 |
|
01:12
π
|
godane |
i figure one you guys can do it |
|
01:13
π
|
godane |
you may also want to download this these pages too so we have metadata : http://www.mp3lizard.com/download.cfm?id=6856 |
|
01:13
π
|
godane |
they redirect to mp3 files but wget they don't redirect |
|
01:13
π
|
godane |
so we can the html |
|
01:14
π
|
godane |
*can get |
|
01:25
π
|
Somebody2 |
t3: Yep, not as far as I know. |
|
01:56
π
|
|
VerfiedJ has quit IRC (Quit: Leaving) |
|
02:02
π
|
|
BlueMax has joined #archiveteam-bs |
|
02:19
π
|
|
m007a83 has quit IRC (Read error: Operation timed out) |
|
02:39
π
|
|
m007a83 has joined #archiveteam-bs |
|
02:43
π
|
|
qw3rty115 has joined #archiveteam-bs |
|
02:46
π
|
|
qw3rty114 has quit IRC (Read error: Operation timed out) |
|
03:14
π
|
|
ndiddy has quit IRC (Ping timeout: 252 seconds) |
|
03:14
π
|
|
qw3rty116 has joined #archiveteam-bs |
|
03:16
π
|
|
qw3rty115 has quit IRC (Ping timeout: 600 seconds) |
|
03:29
π
|
|
qw3rty116 has quit IRC (Ping timeout: 600 seconds) |
|
03:29
π
|
|
qw3rty116 has joined #archiveteam-bs |
|
03:43
π
|
eientei95 |
godane: THat's because the server checks if the headers contain 'Referer: http://www.mp3lizard.com/' |
|
03:43
π
|
eientei95 |
Add in the header and you get a 302 `location: http://dl.mp3lizard.com/jonandal/06%2Emp3` |
|
03:45
π
|
godane |
ok |
|
03:45
π
|
godane |
i was only point out what i found |
|
03:45
π
|
godane |
i'm not mirroring it |
|
03:45
π
|
godane |
i have tons of stuff to grab for you guys |
|
03:49
π
|
Flashfire |
Dont have the storage or the bandwith otherwise I would do it |
|
03:50
π
|
|
qw3rty117 has joined #archiveteam-bs |
|
03:50
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
03:53
π
|
|
qw3rty116 has quit IRC (Read error: Operation timed out) |
|
03:54
π
|
|
Sk1d has joined #archiveteam-bs |
|
03:55
π
|
|
qw3rty118 has joined #archiveteam-bs |
|
03:58
π
|
|
qw3rty117 has quit IRC (Read error: Operation timed out) |
|
04:00
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
04:00
π
|
|
qw3rty119 has joined #archiveteam-bs |
|
04:02
π
|
|
Sk1d has joined #archiveteam-bs |
|
04:05
π
|
|
qw3rty118 has quit IRC (Read error: Operation timed out) |
|
04:23
π
|
|
qw3rty111 has joined #archiveteam-bs |
|
04:26
π
|
|
qw3rty119 has quit IRC (Ping timeout: 600 seconds) |
|
04:30
π
|
|
qw3rty112 has joined #archiveteam-bs |
|
04:33
π
|
|
qw3rty111 has quit IRC (Read error: Operation timed out) |
|
04:36
π
|
|
ndiddy has joined #archiveteam-bs |
|
04:37
π
|
|
qw3rty113 has joined #archiveteam-bs |
|
04:39
π
|
|
ndiddy has quit IRC (Client Quit) |
|
04:40
π
|
|
qw3rty112 has quit IRC (Read error: Operation timed out) |
|
04:43
π
|
|
Despatche has quit IRC (Read error: Operation timed out) |
|
04:44
π
|
|
odemgi_ has joined #archiveteam-bs |
|
04:46
π
|
|
odemgi has quit IRC (Ping timeout: 252 seconds) |
|
04:47
π
|
|
odemg has quit IRC (Ping timeout: 265 seconds) |
|
04:59
π
|
|
odemg has joined #archiveteam-bs |
|
05:01
π
|
|
HashbangI has quit IRC (Ping timeout: 960 seconds) |
|
05:04
π
|
|
HashbangI has joined #archiveteam-bs |
|
05:13
π
|
|
Despatche has joined #archiveteam-bs |
|
05:34
π
|
|
wp494 has joined #archiveteam-bs |
|
05:39
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
05:41
π
|
|
wp494_ has quit IRC (Read error: Operation timed out) |
|
05:42
π
|
|
Sk1d has joined #archiveteam-bs |
|
05:46
π
|
|
yano_ has joined #archiveteam-bs |
|
05:46
π
|
|
swebb has quit IRC (Read error: Operation timed out) |
|
05:46
π
|
|
c4rc4s has quit IRC (Read error: Operation timed out) |
|
05:46
π
|
|
Frogging has quit IRC (Read error: Operation timed out) |
|
05:46
π
|
|
Frogging has joined #archiveteam-bs |
|
05:46
π
|
|
simon816 has quit IRC (Ping timeout: 246 seconds) |
|
05:47
π
|
|
fredgido has joined #archiveteam-bs |
|
05:47
π
|
|
svchfoo1 has quit IRC (Read error: Operation timed out) |
|
05:47
π
|
|
frainz has quit IRC (Read error: Operation timed out) |
|
05:47
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
05:47
π
|
|
yano has quit IRC (Read error: Operation timed out) |
|
05:48
π
|
|
swebb has joined #archiveteam-bs |
|
05:48
π
|
|
bithippo has quit IRC (Ping timeout: 246 seconds) |
|
05:48
π
|
|
Petri152 has quit IRC (Ping timeout: 246 seconds) |
|
05:48
π
|
|
JAA has quit IRC (Ping timeout: 246 seconds) |
|
05:49
π
|
|
frainz has joined #archiveteam-bs |
|
05:50
π
|
|
Sk1d has joined #archiveteam-bs |
|
05:50
π
|
|
decay_ has joined #archiveteam-bs |
|
05:52
π
|
|
fredgido_ has quit IRC (Read error: Operation timed out) |
|
05:52
π
|
|
godane has quit IRC (Read error: Operation timed out) |
|
05:52
π
|
|
decay has quit IRC (Ping timeout: 492 seconds) |
|
05:52
π
|
|
decay_ is now known as decay |
|
05:59
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
06:02
π
|
|
Sk1d has joined #archiveteam-bs |
|
06:03
π
|
|
godane has joined #archiveteam-bs |
|
06:46
π
|
|
svchfoo1 has joined #archiveteam-bs |
|
06:46
π
|
|
simon816 has joined #archiveteam-bs |
|
06:46
π
|
|
Petri152 has joined #archiveteam-bs |
|
06:46
π
|
|
c4rc4s has joined #archiveteam-bs |
|
06:47
π
|
|
svchfoo3 sets mode: +o svchfoo1 |
|
06:47
π
|
|
JAA has joined #archiveteam-bs |
|
06:48
π
|
|
bakJAA sets mode: +o JAA |
|
06:48
π
|
|
odemg has quit IRC (Ping timeout: 265 seconds) |
|
06:49
π
|
|
odemg has joined #archiveteam-bs |
|
06:53
π
|
|
HashbangI has quit IRC (net_error) |
|
07:01
π
|
|
HashbangI has joined #archiveteam-bs |
|
07:08
π
|
|
wyatt8740 has quit IRC (Read error: Operation timed out) |
|
07:22
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
07:24
π
|
|
Sk1d has joined #archiveteam-bs |
|
08:51
π
|
|
Hani has quit IRC (Read error: Connection reset by peer) |
|
08:52
π
|
|
Hani has joined #archiveteam-bs |
|
09:02
π
|
|
Oddly has joined #archiveteam-bs |
|
09:06
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
09:09
π
|
|
Sk1d has joined #archiveteam-bs |
|
09:13
π
|
|
Despatche has quit IRC (Read error: Operation timed out) |
|
10:31
π
|
|
xLovely has joined #archiveteam-bs |
|
11:04
π
|
|
xLovely has quit IRC (Quit: Leaving) |
|
11:05
π
|
|
xLovely has joined #archiveteam-bs |
|
11:06
π
|
|
xLovely has quit IRC (Client Quit) |
|
11:08
π
|
|
xLovely has joined #archiveteam-bs |
|
11:09
π
|
|
xLovely has quit IRC (Client Quit) |
|
11:09
π
|
|
xLovely has joined #archiveteam-bs |
|
12:00
π
|
|
Oddly has quit IRC (Ping timeout: 259 seconds) |
|
12:08
π
|
kiska |
Kaz: Can I have wedpics-disco please? 15th Feb 2019 is their sunset date |
|
12:22
π
|
|
lindalap has joined #archiveteam-bs |
|
12:24
π
|
lindalap |
Few ArchiveBot requests again, this time new Finnish government agency websites |
|
12:25
π
|
lindalap |
liikennevirasto.fi (Finnish Transport Infrastructure Agency / Liikennevirasto) became vayla.fi (VΓ€ylΓ€virasto) |
|
12:26
π
|
lindalap |
trafi.fi (Finnish Transport Safety Agency) and ficora.fi (Finnish Communications Regulatory Authority) became traficom.fi (TRAFICOM) |
|
12:27
π
|
lindalap |
Previous domains now redirect to the new ones, redirects seem to be working so far. |
|
12:27
π
|
lindalap |
The website designs have also changed. |
|
12:27
π
|
lindalap |
Since 2019-01-01 |
|
12:35
π
|
kiska |
JAA: xD |
|
12:35
π
|
kiska |
So it looks like melissakayle2014 = MelissaKayle2014 |
|
12:36
π
|
kiska |
And also NTA4MDk3 = nta4mdk3 |
|
12:36
π
|
JAA |
(From -ot) |
|
12:36
π
|
JAA |
Oh, I thought the codes were random. |
|
12:36
π
|
JAA |
Well, we're not going to bruteforce 16-char 0-9a-z codes... |
|
12:36
π
|
kiska |
That would be a bad idea |
|
12:37
π
|
kiska |
This is what melissakayle2014 gives https://nta4mdk3.wedpics.com/ |
|
12:37
π
|
kiska |
So might be better to brute force the subdomain portion |
|
12:37
π
|
Flashfire |
Could we not brute force it with a modified URLTEAM code? |
|
12:38
π
|
Flashfire |
Thereβs enough power running their to do some of that work |
|
12:38
π
|
kiska |
Perhaps, but I am not familiar with URLTeam |
|
12:38
π
|
JAA |
Flashfire: You underestimate the size of the [0-9a-z]{16} keyspace. |
|
12:38
π
|
kiska |
s/code |
|
12:38
π
|
JAA |
At 1 million requests per second, it would still take several times as long as the universe is old to cover all of those codes. |
|
12:39
π
|
Flashfire |
JAA maths was never my strong point. Though we could still do a bit of it. Assuming that it starts at single character |
|
12:39
π
|
Flashfire |
Or shelf the stupid idea I suggested at nearly midnight |
|
12:39
π
|
JAA |
kiska: Do all of those "custom names" map to a random code of <= 8 chars? |
|
12:40
π
|
kiska |
invite code "test123" gives "MjgxMDI" |
|
12:40
π
|
JAA |
8 chars is still pretty damn long though. That's 2.8 trillion combinations. |
|
12:40
π
|
kiska |
Hrm... |
|
12:41
π
|
Flashfire |
Arenβt we doing that with one of the URL team projects anyway? |
|
12:41
π
|
JAA |
No |
|
12:41
π
|
JAA |
Longest is 7 chars. |
|
12:41
π
|
Flashfire |
Alright my iPod is gonna go flat if I donβt plug it in to charge Iβll be back on kayer |
|
12:42
π
|
JAA |
7 chars of 0-9a-z reduces it to 78 billion combinations, which still takes a long time but is doable. |
|
12:42
π
|
kiska |
Invite "ERICLAURA326" gives urlkey "GE3TQMBXG42A" |
|
12:42
π
|
JAA |
Ew |
|
12:43
π
|
kiska |
Yuck indeed |
|
12:44
π
|
kiska |
Hrm... we may need to run discovery and grab concurrently |
|
12:45
π
|
kiska |
And I doubt that project sonar will have all of those domains as well |
|
12:46
π
|
kiska |
*vomit* |
|
12:46
π
|
|
Darkstar has quit IRC (Ping timeout: 612 seconds) |
|
12:46
π
|
kiska |
Grab code will have to use scrolling... |
|
12:48
π
|
kiska |
I am unsure how its doing the scrolling, network doesn't reveal anything |
|
12:49
π
|
kiska |
Here is the album response: https://pastebin.com/snx3hx8u |
|
12:49
π
|
|
HashbangI has quit IRC (net_error) |
|
12:49
π
|
JAA |
Looks like there's a websocket connection... :-| |
|
12:49
π
|
|
HashbangI has joined #archiveteam-bs |
|
12:50
π
|
kiska |
Hrm I wonder what happens if I block websocket connections... |
|
12:50
π
|
JAA |
This is getting better and better... :-( |
|
12:52
π
|
JAA |
The actual image URLs use a 6-char hex code plus a decimal number up to at least 8 digits. Not bruteforcable either (1677 trillion combinations)... |
|
12:58
π
|
kiska |
JAA: Hrm I suppose wpull might work here |
|
12:58
π
|
kiska |
Or better yet chromebot |
|
13:00
π
|
* |
PurpleSym has been summoned. |
|
13:00
π
|
PurpleSym |
What site are we talking about? |
|
13:00
π
|
kiska |
wedpics |
|
13:00
π
|
kiska |
Eeek! It is a websocket... wss://ws.wedpics.com:8098/ws?wpid=rKv-q_pwQfyCmK1SxJRIzw |
|
13:04
π
|
PurpleSym |
Wait, is this even public stuff? |
|
13:07
π
|
kiska |
Presumably, since all you need is a invite code |
|
13:08
π
|
kiska |
And I'd assume that some of those domains are in project sonar's data set, so it might as well be considered public |
|
13:08
π
|
PurpleSym |
I mean, thereβs names and email addresses in there. |
|
13:09
π
|
kiska |
Can you show an example of email addresses? Since I can't find that information on the example invite code I have |
|
13:10
π
|
PurpleSym |
https://nta4mdk3.wedpics.com/weddings/getWedding |
|
13:10
π
|
PurpleSym |
It even got Facebook access tokens?! |
|
13:10
π
|
kiska |
Hrm... |
|
13:13
π
|
kiska |
So in this case we omit getWedding endpoint, as far as I can see that is the only endpoint leaking this information |
|
13:14
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
13:14
π
|
|
Oddly has joined #archiveteam-bs |
|
13:15
π
|
kiska |
Hrm... I am not too sure how to deal with the websocket connection |
|
13:16
π
|
PurpleSym |
There websocket does not seem to be used for album display. |
|
13:17
π
|
kiska |
Yeah are there anymore endpoints that leak personal information? I can filter those out |
|
13:18
π
|
PurpleSym |
Iβm checking right now. |
|
13:18
π
|
|
Sk1d has joined #archiveteam-bs |
|
13:18
π
|
PurpleSym |
Definitely https://nta4mdk3.wedpics.com/user/getUsers |
|
13:19
π
|
kiska |
I get this: {"data":"FAILURE"} on that endpoint |
|
13:20
π
|
PurpleSym |
Works with POST only. |
|
13:20
π
|
kiska |
I see... |
|
13:20
π
|
kiska |
Well blocking that endpoint |
|
13:22
π
|
PurpleSym |
Looks like you can essentially enumerate all users with that endpoint :facepalm: |
|
13:24
π
|
PurpleSym |
And you can enumerate all wedding photos using the /media/ids endpoint. |
|
13:30
π
|
kiska |
*sigh* Is this a sign of a badly programmed service? |
|
13:33
π
|
PurpleSym |
This is a sign of privacy desaster. |
|
13:34
π
|
kiska |
Or the person who programmed this, did not do web security 101 |
|
13:36
π
|
PurpleSym |
Either way, we should not archive this. |
|
13:36
π
|
kiska |
Alright |
|
13:41
π
|
PurpleSym |
Anyone in here who can assess the impact of the Facebook access token in that data? What information can you access with that? |
|
14:27
π
|
JAA |
Regarding the discussion about bruteforcing track IDs on MP3Lizard: I'm running a wpull for that now. More specifically, for the IDs that weren't already retrieved by my previous crawl. So far, it didn't find anything. |
|
14:33
π
|
|
wp494_ has joined #archiveteam-bs |
|
14:34
π
|
JAA |
Yup, no hidden tracks on that site. |
|
14:36
π
|
|
wp494 has quit IRC (Read error: Operation timed out) |
|
14:40
π
|
|
Oddly has quit IRC (Ping timeout: 255 seconds) |
|
14:56
π
|
Kaz |
kiska: did anyone sort tracker (I'm assuming that's what you meant) |
|
15:02
π
|
kiska |
Actually we decided to not archive wedpics |
|
15:02
π
|
kiska |
So there is no need for a tracker and github repo |
|
15:04
π
|
Kaz |
understood |
|
15:15
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
15:18
π
|
|
Sk1d has joined #archiveteam-bs |
|
15:20
π
|
|
lindalap has quit IRC (Quit: lindalap) |
|
15:20
π
|
|
lindalap has joined #archiveteam-bs |
|
15:22
π
|
|
Darkstar has joined #archiveteam-bs |
|
15:33
π
|
|
lindalap has quit IRC (Quit: lindalap) |
|
15:36
π
|
|
omarroth has joined #archiveteam-bs |
|
15:38
π
|
|
C4K3 has joined #archiveteam-bs |
|
15:38
π
|
|
C4K3 has quit IRC (Connection closed) |
|
15:46
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
15:51
π
|
|
Sk1d has joined #archiveteam-bs |
|
15:53
π
|
|
VerfiedJ has joined #archiveteam-bs |
|
15:57
π
|
|
odemg has quit IRC (Ping timeout: 265 seconds) |
|
16:00
π
|
|
odemg has joined #archiveteam-bs |
|
16:19
π
|
|
yano_ is now known as yano |
|
16:32
π
|
|
Oddly has joined #archiveteam-bs |
|
17:07
π
|
|
Oddly has quit IRC (Ping timeout: 255 seconds) |
|
18:10
π
|
|
LFlare has quit IRC (Quit: The Lounge - https://thelounge.chat) |
|
18:18
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
18:21
π
|
|
Sk1d has joined #archiveteam-bs |
|
18:23
π
|
|
Oddly has joined #archiveteam-bs |
|
18:25
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
18:28
π
|
|
Sk1d has joined #archiveteam-bs |
|
18:35
π
|
|
RichardG has quit IRC (Read error: Connection reset by peer) |
|
18:35
π
|
|
RichardG has joined #archiveteam-bs |
|
18:37
π
|
|
omarroth has quit IRC (Ping timeout: 268 seconds) |
|
18:45
π
|
|
HashbangI has quit IRC (net_error) |
|
18:46
π
|
|
HashbangI has joined #archiveteam-bs |
|
19:22
π
|
Kaz |
https://twitter.com/BBCBreaking/status/1088879270158462976 |
|
19:44
π
|
|
odemg has quit IRC (Ping timeout: 265 seconds) |
|
19:45
π
|
|
odemg has joined #archiveteam-bs |
|
19:53
π
|
|
Oddly has quit IRC (Ping timeout: 255 seconds) |
|
20:14
π
|
|
xLovely has quit IRC (Quit: Leaving) |
|
20:57
π
|
|
omarroth has joined #archiveteam-bs |
|
21:00
π
|
|
omarroth has quit IRC (Konversation terminated!) |
|
21:01
π
|
|
Mateon1 has quit IRC (Ping timeout: 360 seconds) |
|
21:01
π
|
|
Mateon1 has joined #archiveteam-bs |
|
21:16
π
|
|
LFlare has joined #archiveteam-bs |
|
21:45
π
|
|
robogoat_ is now known as robogoat |
|
21:53
π
|
|
omarroth has joined #archiveteam-bs |
|
22:17
π
|
|
odemg has quit IRC (Ping timeout: 265 seconds) |
|
22:20
π
|
|
odemg has joined #archiveteam-bs |
|
22:30
π
|
|
omarroth has quit IRC (Read error: Connection reset by peer) |
|
23:28
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
23:31
π
|
|
Sk1d has joined #archiveteam-bs |
|
23:33
π
|
|
wp494 has joined #archiveteam-bs |
|
23:38
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
23:40
π
|
|
Sk1d has joined #archiveteam-bs |
|
23:42
π
|
|
wp494_ has quit IRC (Ping timeout: 615 seconds) |
|
23:46
π
|
|
Sk1d has quit IRC (Read error: Operation timed out) |
|
23:49
π
|
|
Sk1d has joined #archiveteam-bs |