homemade holiday treats

December 17, 2007 at 8:30 pm · Filed under bubble, design, megalomania, speculation, wank

drmike reports in comments that our old friend Browse Happy (you know, the link Matt refused to take off the WP dashboard even though IE6 is now an unpleasant memory that wordpress.com themes are no longer tested in? and just happened to have affiliate links to Firefox he’d ‘forgotten’ to remove? and that is now pimped in the wordpress.org footer as a one-fingered salute to all those who wanted to take the preciousss away from him? That one.)

The latest piece of propaganda Browse Happy is bringing to the masses is a hidden link in the footer to a page of Christmas recipes. How seasonal! (Sorry, did I say ‘bringing to the masses’? I meant ‘bringing to Google’.)

Of course Matt would never make the elementary mistake of not keeping his code up to date in order to secure it from spammers like the people who did Al Gore’s site, nor would he ever put lucrative hidden links on one of his collection of high-PR domains, so this is very puzzling indeed. Perhaps it is a mass hallucination brought about by a collective desire for homemade holiday treats?

30 Comments »

  1. shep said

    December 17, 2007 @ 8:59 pm

    hmm. i don’t see it. maybe it’s been removed already.

    Reply

  2. options said

    December 17, 2007 @ 9:05 pm

    really weird, must’ve been defaced. I’m kinda curious, though, ’bout how?

    now it’s in the SE cache only, btw.

    Reply

  3. ttancm said

    December 17, 2007 @ 9:05 pm

    I’m not much of an artist but you caught me while I was bored.

    http://www.amusedme.com/crap/browseunhappy.jpe
    http://www.amusedme.com/crap/unhappy2.jpe

    Reply

  4. options said

    December 17, 2007 @ 9:06 pm

    2shep: link

    [edited to spare the blushes of the layout: tga]

    Reply

  5. that girl again said

    December 18, 2007 @ 12:43 am

    And it was in all pages on that site; same footer on every page.

    Reply

  6. that girl again said

    December 18, 2007 @ 12:43 am

    Strange though that Google should hallucinate the same thing as the rest of us 😉

    Reply

  7. options said

    December 18, 2007 @ 1:34 am

    yep, on the front page even. (not only Google, MSFT and probably YHOO are hallucinating too)

    now I’m wandering/hallucinating on how attacker was able to upload 0px GIF? 😉

    ——————————————
    WWWConnect::Connect(“browsehappy.com”,”80″)
    IP = “207.7.108.189:80”

    REQUEST: **************
    GET /images/dot_clear.gif HTTP/1.1
    Host: browsehappy.com
    Accept: */*

    RESPONSE: **************
    HTTP/1.1 200 OK
    Date: Tue, 18 Dec 2007
    Server: Apache
    Last-Modified: Mon, 19 Nov 2007 19:52:14 GMT
    ETag: “2396ee-2b-7c1ab780”
    Accept-Ranges: bytes
    Content-Length: 43
    X-Powered-By: The blood, sweat and tears of the fine, fine TextDrive staff
    Served-By: TextDrive’s Textpache
    Content-Type: image/gif

    GIF89a

    Reply

  8. drmike said

    December 18, 2007 @ 12:41 pm

    It got removed about 15 minutes after it got mentioned on the wp.org forums.

    What interests me is that if you search for that domain within google, there’s some discussion about it but as a paid link or some form of advertising. I’m wondering if it was a hack….

    Reply

  9. Andrea said

    December 18, 2007 @ 2:37 pm

    Well, if it wasn’t a hack, then it was in there on purpose, and that might be harder to explain…

    Reply

  10. drmike said

    December 18, 2007 @ 3:09 pm

    *chuckle* Almost makes me want to go back to using IE. 🙂

    Reply

  11. that girl again said

    December 18, 2007 @ 3:14 pm

    Well, if you’re hacked you just say so, don’t you? Yes, it’s embarrassing, but these things happen, and it wouldn’t be the first time they’ve had a site compromised. They’d have gone to the forum thread and said something like ‘thanks for telling us about the spam link on that site, sorry about that, we deleted it as soon as we found out and we’ll try to ensure it doesn’t happen again.’

    Instead of addressing the issue, they’re pretending it never existed. You have to admit it doesn’t look good.

    Reply

  12. drmike said

    December 18, 2007 @ 4:10 pm

    We still haven’t really heard anything about the Viet. front page. They tried to pass it off as an issue with the translation file although WordPress translation files do not modify any of the underlying html, just what’s in the links. (Unless they’ve got a different system in there)

    Matt gave us a nonnense response when he pointed out the broken link. It’s not like they’ve never had broken links on pages around here. Oh no, they’ve never had any….

    It’s funny that you mention the “it wouldn’t be the first time they’ve had a site compromised” bit as I was remembering that Matt had mentioned in passing once that only boxes that he himself had setup had been compromised. Maybe Automattic needs to review all of their boxes that he has set up in the past.

    Reply

  13. Robert Synnott said

    December 18, 2007 @ 7:36 pm

    I seriously doubt that it was actually put up deliberately. It’s quite new (not in web.archive.org), and it’s been known for quite some time that using paid links will invite swift retribution from Google.

    Still, surprising that they’re not commenting on why it was there; covering up security holes is just going to worry people.

    Reply

  14. drmike said

    December 18, 2007 @ 7:52 pm

    I see it as far back as November 20th.

    Reply

  15. Robert Synnott said

    December 18, 2007 @ 8:26 pm

    The first rounds of serious penalties were before then, and Matt Cutts has been warning about it for ages.

    BrowseHappy still has a very high pagerank, so presumably wasn’t punished for the offending link…

    Reply

  16. Kissing Bandit said

    December 18, 2007 @ 8:45 pm

    Er…do you not understand that Automattic is now in the back pocket of Google. Anything they do now, unless it’s stupendously egregious, is not likely to evoke any retribution from Google.

    Just sayin’.

    -KB

    Reply

  17. Kissing Bandit said

    December 18, 2007 @ 8:47 pm

    P.S. Wank, you may want to edit that super long URL a few comments up b/c it’s throwing your theme all out of whack and stuff. (Guess the designer though overflow: hidden; is overrated.)

    -KB

    Reply

  18. that girl again said

    December 19, 2007 @ 6:29 pm

    They tried to pass it off as an issue with the translation file although WordPress translation files do not modify any of the underlying html, just what’s in the links. (Unless they’ve got a different system in there)

    I poked around the translation system last night and it does look like the link is included in the strings (so, instead of translating ‘support’ we are invited to translate <a href="/support/" title="Support and discussion forums.">Support</a>).

    Reply

  19. drmike said

    December 19, 2007 @ 6:42 pm

    Well then they got a different system in there.

    But then it comes down to not double checking what’s been inputted. With all those times errors in the translations have been brought up in the forums, you would think that at least someone from Automattic would be at least scanning the list out the input of multiple translators would be used and their responces compared to each other.

    And then, why are translation volunteers being asked to translate an actual link anyway? Any support link should be put into place by a staff member. Drivers aren’t modifing street signs, are they?

    Reply

  20. drmike said

    December 19, 2007 @ 6:55 pm

    Are you looking at this?

    [a href=”/support/” title=”Support and discussion forums.”]Support[/a]

    Comparing what’s in that general area, that looks like to be a wp.org link. I see links to the codex near by as well.

    Looking further, I see a number of terms that would be found in regular wordpress and not as wp.com. For example, there’s a line for “my-hacks.php (legacy hacks support)” I don’t recall seeing that oveer here at wp.com.

    In addition and going back to that “A staff member needs to be checking those translations.” bit of mine up there, flipping through the French translation, I see translations that are marked as approved. So someone’s checking them. Does that mean that someone blew through some translations without actually checking them?

    It just doesn’t add up to me.

    Reply

  21. drmike said

    December 19, 2007 @ 7:44 pm

    But hey, there’s more important things to worry about. Jamie Lynn’s preggie and that screw’s up mommie’s book.

    That’s more important than a silly pair of links and how they got there. 🙂

    Reply

  22. drmike said

    December 19, 2007 @ 7:46 pm

    *sigh*

    wank. akismet. thanks.

    Reply

  23. that girl again said

    December 19, 2007 @ 11:32 pm

    I’m not sure that anyone with no knowledge of the language in question ought to be in the position of moderating translations. But then, nor should you be approving translations if you’re not staff. I have no idea whether somebody on staff approved that string without looking at it because hey, it’s Vietnamese, not like they know whether it’s appropriate or not anyway, or whether they’ve appointed a corrupt or lazy native speaker to do the moderating for them. There is no transparency whatsoever. I did find one obvious typo in the Welsh translation (‘Akisment’ for ‘Akismet’) which does indicate that whatever checking does go on isn’t particularly rigorous. Some strings aren’t even correct English (‘The follow products are due to expire’?!?)

    The wp.org strings are weird, because isn’t .org localization handled on a language-by-language basis by volunteers anyway? Unless of course such local teams have too much power for Automattic’s liking and they’re aiming to bring all translation work under central control. I vaguely remember a debate on wp-hackers about whether local releases ought to be allowed to bundle plugins that weren’t in the default download. Having separate sites with separate downloads could be seen as diluting the Brand.

    Reply

  24. drmike said

    December 20, 2007 @ 8:47 pm

    Wank, can you email me please? I need to mention two things about your site and I would rather not do it in comments.

    Actually it has wordpress.org as in the site links and content for the actual wordpress.org site, not just the regular wordpress software. Looking at the wp.org source, there is a “language guess” javascript being loaded.

    *shrug* I guess that’s a good thing. Not sure if folks not being told what specifically they’re translating is ethical though. They’ve been told that it’s for the wp.com site.

    Is it overkill though? Most languages have “offical” or at least recognized language files linked to out of the codex. Is there a need to dupe the efforts of the wp.org volunteers who have already done these translations?

    And is it me or does the Vietnamese translation list look rather empty? I’m wondering if the old list of translated phrases got dumped?

    Reply

  25. Abel Cheung said

    December 21, 2007 @ 3:33 pm

    No, wp.com translation is completely independent from those translation available in codex. wp.com does not reuse any string from latter party, even though most translation in codex is hosted on Automattic. Indeed that’s their decision anyway, and they have right to control how things are done.

    Reply

  26. drmike said

    December 21, 2007 @ 6:02 pm

    That’s not the point being raised here though. The translations being done here at wp.com contain material from both the wordpress.org site (the actual site) as well as code only found within the regular wordpress code.

    The problem with what is occuring is that Automattic has stated that the translations being done are only for the use here at wp.com. If that is true, why are the extra phrases in there?

    Reply

  27. Kissing Bandit said

    December 26, 2007 @ 11:56 pm

    Just dropping in to offer a belated Christmas (if you observe it) greeting and wish you a happy new year.

    -KB

    Reply

  28. BrowseHappy.com hacked again? « JAWW (beta) said

    July 9, 2008 @ 8:57 pm

    […] hacked again? oh, noes, it appears our old fella browsehappy.com is hacked again! O, NOES — HAKID EGAN! […]

    Reply

  29. the faraway echo of fanboys cheering « wordpress™ wank said

    July 11, 2008 @ 12:04 am

    […] free beer fundamentalists, megalomania, wank It’s really unfortunate that BrowseHappy keeps getting hacked in this way, isn’t it? I suppose its artifically enhanced pagerank, along with its […]

    Reply

  30. Wordpress says no to Sponsored Links in Themes but gets caught adding them into their own sites | Dr. Mike's Steak DinnerDr. Mike's Steak Dinner said

    August 2, 2014 @ 1:29 am

    […] one for two reasons, one more important than the other.  The lesser argument, which Options makes here is how was the hacker, if there really was one, able to upload an image to the server.  Granted, […]

    Reply

RSS feed for comments on this post · TrackBack URI

Leave a comment