Devuan.org Now Points To 'Pwned' Page With Gopher URLs

"DEVUAN.ORG HAS BEEN PWNED" reads a new message at the home page for Devuan (a fork of Debian without systemd) -- which re-redirects to a new page named pwned.html, reports Slashdot reader DevNull127: In all capital letters, its carefully-indented message (complete with an ascii-art logo) now informs visitors that "the web sucks -- JavaScript sucks -- browsers suck." Posting the URLs to several gopher sites, it adds that "Gopher is the way -- gopher is the future."

"Kiss port 80 goodbye. Join the revolution on port 70."
The attackers identify themselves as "Green Hat Hackers," a term generally understood to mean ambitious newbie hackers who want to improve their skills. "Stop the madness," continues their message, which appeared just hours before the first day of April.

"Get yourself a gopher client."

owned

lol, Linux sucks

Re:owned

only when booted with systemd to wayland

Re:owned

only when booted with systemd to wayland

Yet Devuan is the distro known for being non-systemd.

Re:owned

You've clearly not tried Linux if you think it sucks.

Thanks for playing, though, Microshill.

Re:owned

Unfortunately it's the least shitty option available today.

If only OS/2 or BeOS hadn't been snuffed out by Microsoft's illegal monopoly and strong-arm tactics. We might have a good desktop OS right now.

Hahaha

[ze_jua]

Good joke. Some work was done...

Re: Hahaha

After "green" my eye skipped forward and read "amphibious newbie hackers".

Re:Hahaha

[KiloByte]

You'd want sacc to view it -- forg breaks ASCII-art, and OverbiteNX requires non-packaged Onyx, thus is beyond my current amount of shit to give. OverbiteFF used to be good, but is no more.

Re:Hahaha

[CronoCloud]

The gopher links didn't work in Lynx which surprised me. They aren't even clickable even if you have OverbiteNX installed, I had to copy the link to a new tab.

BOTH 7779847 AND 1554080659 ARE PRIME NUMBERS

.....? TF does this have to do with gopher?

Also, no gopher in Federal prison. Sorry Trump traitors.

Re: BOTH 7779847 AND 1554080659 ARE PRIME NUMBERS

You wish. Ha ha ha!!!

Re: BOTH 7779847 AND 1554080659 ARE PRIME NUMBERS

No I'm sure, there's no gopher in Federal prison. Sorry, Trump traitors.

Re: BOTH 7779847 AND 1554080659 ARE PRIME NUMBERS

dude, gopher ruled way before www. google is your friend.

Re: BOTH 7779847 AND 1554080659 ARE PRIME NUMBERS

[Cmdln+Daco]

Correction: google is never your friend.

Re: BOTH 7779847 AND 1554080659 ARE PRIME NUMBERS

dude, gopher ruled way before www. google is your friend.

*fiend.

Windowz is the worst

Linux is the best!!!!

Re:Windowz is the worst

Best at getting hacked and lacking security.

Re:Windowz is the worst

Yeah, those famously stable Windows servers with uptimes measured in months.. Not like those shitty Linux boxes than can go for years without reboots.. Who wants 99.999999% reliability?

They're ...

... not wrong, y'know?

"The web sucks -- JavaScript sucks -- browsers suck"

I agree.

Re: They're ...

I love these complaints. Usually by people who have neither the skills nor insight to even begin to understand scalable technology.

Re:They're ...

It'd be fairly hard to have Amazon without all three of those things. I'm a fan of Amazon.. Cut my business expenses by quite a bit..

April Fools is now two days long...

It just keeps getting worse!

Re: April Fools is now two days long...

Amen

$#@& April fools off, forever

[AbRASiON]

I'd have no problem with news editors deliberately posting that shit to get written warnings. It's a god damn scourge on the internet.

Looks like I'm getting some extra work done today.
Time to close the browser for near 48 hours (time zones drag this garbage out longer)

Re:$#@& April fools off, forever

[Delphix]

It seems this actually hacked, and not an April Fool's joke. https://lists.dyne.org/lurker/...

Re:$#@& April fools off, forever

yeah, see also:

https://lists.dyne.org/lurker/message/20190401.070222.844cb081.en.html

OMG!

Re:$#@& April fools off, forever

How much of Devuan has been compromised? Is this a distribution that is now dead? (I just started looking into non Ubuntu distributions and then this happens)

Re: $#@& April fools off, forever

I'm going back to Microsoft Windows where you don't have jokers messing with perceptions of security

Re: $#@& April fools off, forever

whether it's 'owned' or this is just a 'joke', Devuan is now on my 'can't be trusted' list

Gopher rules!!

Assuming this is a joke one hell of an irresponsible way to go about implementing it.

Redirects are being applied to all of their subdomains not just main website and all resources are being unconditionally blanket redirected. Even requests for things that are not HTML documents.

The site also advertises quad A records but IPv6 access is being blocked.

Just like most other holidays, feature creep.

[Fly+Swatter]

Christmas is from mid November through December.
Black Friday is really no more as retailers play leap frog to beat the others, about one day earlier each year.
Now April Fools day is on March 31st.....

Re:Just like most other holidays, feature creep.

[thegarbz]

Now April Fools day is on March 31st.....

Posted by Fly Swatter ( 30498 ) on Monday April 01, 2019 @07:44AM

Re:Just like most other holidays, feature creep.

Posted by thegarbz ( 1787294 ) on Sunday March 31, 2019 @08:01PM

Re:Just like most other holidays, feature creep.

[MrKaos]

April fools day is perpetually in the future.

Re: Just like most other holidays, feature creep.

yea, bad means good, janitor is now custodian and i'm a dashed-american.

Re:Just like most other holidays, feature creep.

[Aighearach]

Posted by Anonymous Coward on 04:14 PM March 31st, 2019

Re:Just like most other holidays, feature creep.

What, you don't know about le Jour de l'an?

Re:Just like most other holidays, feature creep.

[Fly+Swatter]

Yea, I lazily checked UTC to make sure too.... oops; silly time zones, some are +14:00.

Re:Just like most other holidays, feature creep.

That is actually how it works in Denmark. the hoax/lie is revealed on the 1st of April.

And so begins the stupid day.

Guess I should avoid Slashdot for the next 24 hours while it posts nothing but lame crap.

Looking for gopher client

Checked altavista. Seems to take foeva!

Re:Looking for gopher client

[vbdasc]

I could send you the last one I've actually used, but sadly it's for Windows 3.1 .

Prime numbers

[aglider]

Interesting clue they are!

Looking for good gopher client

[binarybum]

Where can I find a good gopher client to joint the revolution? I'm looking for one that is free with lots of ads so I feel comfortable.

Re:Looking for good gopher client

[ArchieBunker]

You could probably find some source code for old clients but I doubt many would compile under modern day Linux.

Re:Looking for good gopher client

Where can I find a good gopher client to joint the revolution?

https://en.wikipedia.org/wiki/Category:Gopher_clients

Re:Looking for good gopher client

Where can I find a good gopher client to joint the revolution?

On Debian and Devuan: apt-get install gopher

Re: Looking for good gopher client

"joint the revolution"

This is now how I say "rolling a joint."

Re:Looking for good gopher client

[i.r.id10t]

Where indeed can you get gopher today...

root@darkstar:~# apt-get install gopher
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following NEW packages will be installed:
    gopher
0 upgraded, 1 newly installed, 0 to remove and 38 not upgraded.
Need to get 89.5 kB of archives.
After this operation, 275 kB of additional disk space will be used.
Get:1 http://mirror.atlantic.net/ubu... bionic/universe amd64 gopher amd64 3.0.16 [89.5 kB]
Fetched 89.5 kB in 1s (105 kB/s)
Selecting previously unselected package gopher.
(Reading database ... 397011 files and directories currently installed.)
Preparing to unpack .../gopher_3.0.16_amd64.deb ...
Unpacking gopher (3.0.16) ...
Setting up gopher (3.0.16) ...
Processing triggers for man-db (2.8.3-2ubuntu0.1) ...
root@darkstar:~#

Re:Looking for good gopher client

[dwywit]

"After this operation, 275 kB of additional disk space will be used."

Talk about software bloat.........

Re:Looking for good gopher client

[thegarbz]

Just wait a while for systemd-gopher to be included in the next release. Unfortunately you won't find it in the Devuan repo.

Re:Looking for good gopher client

[tlhIngan]

At one point in time, most web browsers actually had built in gopher clients so you could integrate both forms of hypertext systems together.

Done right you could switch between the two and be none the wiser. Other than the search engines being Archie characters, that is.

Re:Looking for good gopher client

Going to need it mailed on 4 80KB floppies, can't get it to download completely before my mom inevitably picks up the phone.

Re:Looking for good gopher client

[CronoCloud]

Lynx can do gopher, though the gopher links on the devuan page aren't clickable in Lynx. You can, however, hit "G" and type the gopher link in.

Re:Looking for good gopher client

Screw the gopher client, that's so March 31st. April is a much springier month. I'm getting me a beaver client.

You kids and your new-fangled gopher...

[fzammett]

If you're not dialing into a BBS at 300 baud to download library files after posting a few stupid forum posts just to get enough credits for that likely fake copy of The Anarchist's Cookbook then I don't know what you're doing.

Re: You kids and your new-fangled gopher...

what 300 baud? 110 rules

Re: You kids and your new-fangled gopher...

[Cmdln+Daco]

110 baud is almost exclusively for an upper case only ASR-33 terminal. Even back when I first BBSed, with a DecWriter paper printing terminal I bought at a thrift store, it was at 300 baud. I suppose we could wrangle up a 55 baud Teletype too, if necessary. But the reality is, except in the early electro-mechanical era, it was always 300 baud or greater.

Re: You kids and your new-fangled gopher...

This is the best thread of the week

SystemD

[darkain]

I know it has been quite a long time since I've used a Linux distro without SystemD... But was that REALLY what it looked like!? It has been what... five? maybe ten! decades since I switched to SystemD, my memory isn't the best since those dark green times!

Re:SystemD

No, this is an April Fools

Re:SystemD

[darkain]

WOOSH! https://xkcd.com/1627/

Re:Don't spy me!

There are 2 types of OS: [a] with System-D [b] without System-D.

[a] is Debian.
[b] is Devuan.

[a] wanted that [b] must be extinguished.
[b] is being hacked by [a].

[a] is madness for damn hackers supported by the US government or the three-letter agencies.
[b] is hope for peaceful people.

[a] is evil.
[b] is good.

[a] wanted no another alternative than only [a].
[b] is the alternative to [a].

There are two types of open-sourced OS.

[a] Those with a shitty name.

[b] Those with an even shittier name.

Congratulations to the FOSS Marketing team for another fucking "win".

Can you say that normal please?

Without sounding like a nut?
Look at Debian/systemd: Totat nuts.
But does the public think they are?
No! Because they know how to talk!
Even when doing shit like this, do they manage to drag their enemy... which, note, is the victim here(!)... into the dirt, instead of themselves.

And I know you might as well be a false flag troll. But then again, you might not!

So: Stop "defending" my side. You are making it look bad!

(And for the record: I'm programming my own independent user space for Linux/BSD. Which will contain all that is good from traditional init and Unix philosophies, *and* the bits that are good from systemd [not much, but one key one] and Android and Plan9. Judge me by that!)

Re:Can you say that normal please?

(And for the record: I'm programming my own independent user space for Linux/BSD. Which will contain all that is good from traditional init and Unix philosophies, *and* the bits that are good from systemd [not much, but one key one] and Android and Plan9. Judge me by that!)

I would like to try your "cat" implementation, if you have gotten so far already. Could you provide a link to the source?

Re:Can you say that normal please?

#include "meow.h"

int main(int argc, char *argv[]) {
        return feline();
}

Re: Can you say that normal please?

This guy gets pussy.

Ever heard of time zones?

Yeah, I read that after midnight. My midnight.

BOTH 7779847 AND 1554080659 ARE PRIME NUMBERS

Link?

So in simple terms...

Devuan should not be considered a serious distribution and should be avoided. Thanks.

Re: So in simple terms...

MX Linux => Ubuntu Like distro, without Systemd. Systemd it's available, but it's not activated. It's preferred instead the old init.
"MX Linux is a cooperative venture between the antiX and former MEPIS communities, using the best tools and talents from each distro. It is a midweight OS designed to combine an elegant and efficient desktop with simple configuration, high stability, solid performance and medium-sized footprint."

Re:So in simple terms...

[Cmdln+Daco]

NetBSD definitely should not be considered a serious distribution. Which really is part of the point.

Bad idea to link to compromised website?

[Edward+Nardella]

Most slashdot readers are probably not at risk, but not all are safe. I would have figured that the link in OP would be to a screenshot, but nope, it is directly to the compromised website. While efforts may have been made by the editor at the time of publication to verify a lack of attempted attacks by that website, there is no guarantee that it would remain safe and plenty of reason to assume that it might not. Isn't not spreading suspicious links and emails one of the first things we tell people when giving them basic internet safety advice?

Re:Bad idea to link to compromised website?

[sexybomber]

I just looked at the source for the page. It's static HTML with the ASCII art defacement poster enclosed in [pre] tags. There isn't any code there with which one could conceivably conduct an attack.

Re:Bad idea to link to compromised website?

[Edward+Nardella]

While efforts may have been made by the editor at the time of publication to verify a lack of attempted attacks by that website, there is no guarantee that it would remain safe and plenty of reason to assume that it might not.

Re:Bad idea to link to compromised website?

While efforts may have been made by the editor at the time of publication to verify a lack of attempted attacks by that website, there is no guarantee that it would remain safe and plenty of reason to assume that it might not.

While efforts may have been made by the editor at the time of publication to verify a lack of attempted attacks by that website, there is no guarantee that it would remain safe and plenty of reason to assume that it might not.

o_O

are you serious? maybe have a look at the calendar? :-D

Re:Bad idea to link to compromised website?

[Edward+Nardella]

Whoops, still March where I am.

Re:Bad idea to link to compromised website?

[Delphix]

I know it was pointed out this could be an April's Fools joke, but based on the Devuan developers messages it seems to be actually hacked. Just well timed to pass as a joke. https://lists.dyne.org/lurker/... You're spot on about linking to things like this.

Re:Bad idea to link to compromised website?

Of course it was a joke.

Good grief have we gotten stupid,,,

Re: Bad idea to link to compromised website?

a real or fake hack of an OS download location is not funny

Re: Bad idea to link to compromised website?

This.

The problem with gopher

[93+Escort+Wagon]

All roads eventually lead you back to Minnesota. But at least the women there are strong, the men good looking, and the children above average.

Re:The problem with gopher

[EvilSS]

Unfortunately the University is cheap and prone to killing its own offspring with its greed.

Re:The problem with gopher

The children all look like turd world subhuman Somalian chocolate drops.

Re: The problem with gopher

only in cedar riverside

Re:Don't spy me!

[exomondo]

Devuan sounds like Debian's non-union, Mexican equivalent.

Re:Don't spy me!

[FudRucker]

i tried devuan, it is half-assed and hardly worth the trouble, antiX is a better non-systemd fork of debian, all these non-systemd distros should pool their resources and just come up with 2 or 3 distros to satisfy the users, one distro copycats arch, one distro copycats debian, and one copycats slackware but since slackware is already non-systemd it would be pointless

Re:Looking for good gopher client,another more.

sudo apt-get install forg

That awkward moment....

[peppepz]

....when you realize that you prefer the Gopher version to the average modern website design. I hope they keep it past the 1st of April. It makes me feel younger.

Re:That awkward moment....

I, for one, like it when my scroll wheel has a 0.5 s delay and the page never really stops loading.

Re:Browsers ARE being 'subverted #2/2... apk

Didn't know about this one. Thanks for the heads up.

systemd is a lot like gopher

[Revek]

slow to respond and hard to debug.

No ads, loaded quickly...

I'm setting up a gopher page for my business today! No snark.

i'm gay!!!

April fools :-P

You're welcome & it upset a plan I had... apk

You're welcome & it upset a plan I had: I was going to approach UBlock's folks to "team up" w/ 'em!

UBlock imitated my use of hosts (much later) & provide NO DIRECT dns benefits hosts do & use more vs. hosts to do nearly the same job (adblocking - hosts block malware too).

(E.G. Avoid DNS requestlog tracking, kaminsky redirect dns poisoning - BAD now e.g. US DHS issues DNS redirect is HUGE danger (not w/ hosts vs.) https://threatpost.com/gov-war... & ICANN ISSUES SAME WARNING https://tech.slashdot.org/stor... & DNS down)

UBlock doesn't populate hosts as my program does afaik.

* Would have been a good combo (though UBlock uses more & does less vs. hosts (hosts make it redundant & run in faster kernelmode vs. SLOWER usermode compounded by messagepass overheads + resource consumption addons create in browsers (worse if you 'stack' a few)).

APK

P.S.=> Proves JEWGLE has to "MOVE GOALPOSTS" to try (& FAIL) @ defeating hosts (makes me laugh, they haven't)... apk

Re:Not So True:THE WEB SUCKS -- JAVASCRIPT SUCKS -

Bootcamps from this small blue Planet produce yearly armies, by night, of incompetent web developers. Aka coder monkeys ha ha. And who don't give a crap on quality of their work and impact on browser.
Pour state of the web it is done not by browser in special, but by the websites quality. Also search engines doesn't penalize in any way resources hogging, CPU, memory hogging, mean waste of resources used by the websites. They should be the first who raise the alarm signal, Google. Also impact in energy consumption is significant. Or more precisely terrible. Stupid. Websites load tones of completely useless features, overloaded with tones of graphics, preprocessed CSS or JS frameworks which dependency track other JS dependency (NoT vanilla Js).

Nor Mozilla not Google do not provide some advanced integrated profilers or debuggers for dynamically resource monitorisation of browser loads. Or easily logging those measurements. A few blank page will take around 1GByte of RAM!!!???

Firefox for Android it's a disaster. And on long tetm it's toasted. Unfortunately :|

April 1?

[whoever57]

It's April 1 somewhere.

Re: Don't spy me!

this is what freedom in free software means
you can do as many distros you like

Assuming any of this is true...

and it probably is NOT, the supposed hackers picked a really stupid day to do this; it would be simplicity itself for the Devuan folks to fix it just in time for April 2nd, then pretend it was a prank THEY pulled, that they were not hacked and it was all their idea all along.

Re: Assuming any of this is true...

:))))

Re:Not So True:THE WEB SUCKS -- JAVASCRIPT SUCKS -

yea I had a chance on trying Firefox on Android but installed Brave on the guy's smart phone instead. Scared about out of memory but also mobile size for website isn't tested on Firefox. Would have it been a 4GB-6GB-8GB RAM phone I would have installed Firefox though.

Re:Don't spy me!

[Cmdln+Daco]

Just like Stephen Spielbergo!

Re:Browsers ARE being 'subverted #2/2... apk

Why is this post -1? Okay, the shot at Jews is low (seriously, since when did Jews have anything to do with Google/ABC corp? Cmon now) but the rest of the content is on-point.

APK isn't wrong about this stuff.

+1 Informative.

Lennart?

Lennart, was it you?

For those in need of subtitles :-D

https://lists.dyne.org/lurker/message/20190401.070222.844cb081.en.html

Re:Don't spy me!

[vbdasc]

Just install "libpam-elogind-compat" from experimental in buster/sid and you get almost the entire Debian distro without systemd.

Slashdot is run by trolls now

OS/2 haters, Devuan haters. So much hate on Slashdot today. I guess I'll have to find a less bigoted website. 4chan???

Re:Don't spy me!

[OolimPhon]

Yeah, but it's that "almost" that is often the problem.

Usually that's the bit you need for your own activities.

1554080659 is not prime

Factors:

2
5
11
37
71
2689

Browsers ARE being subverted #1/2... apk

See subject: Turning 'em into AD MACHINES (look @ what was done to UBlock by Google https://www.bleepingcomputer.c... LIMITING it to a mere 30k entries (chickenfeed & INSUFFICIENT by far on purpose))!

* MS tried to on hosts from MS - I confronted their "Windows Client Performance Division Mgr" on it on /.: Late 2008 patch stopped you from using 0 vs. 0.0.0.0 or WORSE in 127.0.0.1 making for SLOWER loading files + slower internal parse/load during programmatic File Open/Read-Write/Close-Flush cycles & he agreed I was right http://slashdot.org/comments.p... )

APK

P.S.=> Part 2 on MODERN BROWSER being turned into AD MACHINES next... apk

Browsers ARE being subverted #2/2... apk

Now JEWgle "BRIBED" FireFox (who didn't fully "obey") & their own Chromium SUBVERSION in Chrome try to use some STUPID redundant DNS cache list 1st vs. hosts!

STUPID!

Especially the redundant WASTE & in SLOWER usermode!

DUMB again for another thing!

Why subvert a FASTER kernelmode native TCP/IP stack w/ 45++ yrs. of refinement in it that WORKS or even systemd/launchd already doing that in a Windows-like slower usermode dnscache client (busted on larger hosts files & other security issues too).

Easy to get around though via:

FF about:config

network.dnsCacheEntries 0
network.trr.mode to 5 (SHUTS IT OFF)
network.trr.uri (set to 208.67.222.222)

Chrome also has a way to turn this off, just turn "Data Saver" off (credit green1 https://tech.slashdot.org/comm... )

APK

P.S.=> Lastly: JavaScript BLOWS (purveyor of all tracking, massive slowup, & MALWARE galore, even in ADS) - WebASM will be WORSE ... apk

Correct: I'm not wrong (& they know it)... apk

See subject: The reason it's downmodded is to HIDE TRUTH. JEWgle=jews http://www.jewornotjew.com/pro... sergey brin's a jew pulling JEW TRICKS on UBlock https://www.bleepingcomputer.c... also trying to on hosts in a STUPID redundant WASTEFUL way https://idle.slashdot.org/comm... because the JEWS know it is part of their GOLD intake annoying, tracking, infecting & SLOWING users.

I give users what they want in more speed/security/reliability & anonymity (so does UBlock but more wastefully & not doing DNS bennies hosts do) - JEWgle does the OPPOSITE!

* Sure shows since UBlock was threatening their SHEKLE intake https://www.bleepingcomputer.c...

(Thanks for the compliment)

APK

P.S.=> FACT & they can DOWNMOD HIDE my posts of FACTS all day & I just REPOST to RUN THEM DRY of their abused 'downmodpoints', lol (works, inevitably, every time - outthinking & outsmarting + JUST PLAIN "OUTING" them)... apk

works for me

Just checked it, and I got the devuan home page just fine

Re:Don't spy me!

I run it on my servers, and I've never had a bit of trouble. And it runs all of the critical infrastructure I want it to. *go figure*

Re:Not So True:THE WEB SUCKS -- JAVASCRIPT SUCKS -

Nor Mozilla not Google do not provide some advanced integrated profilers or debuggers for dynamically resource monitorisation of browser loads. Or easily logging those measurements.

I don't know about Chrome, but have you never pressed F12 in Firefox before?

Re:Don't spy me!

[jjbenz]

you mean like Senor Spielbergo?