| 02:15:02 | | fuzzy80211 quits [Read error: Connection reset by peer] |
| 02:17:09 | | fuzzy80211 (fuzzy80211) joins |
| 02:24:00 | | fuzzy80211 quits [Read error: Connection reset by peer] |
| 02:24:41 | | fuzzy80211 (fuzzy80211) joins |
| 02:27:26 | | fuzzy80211 quits [Read error: Connection reset by peer] |
| 02:28:12 | | fuzzy80211 (fuzzy80211) joins |
| 02:30:02 | | fuzzy80211 quits [Read error: Connection reset by peer] |
| 02:30:50 | | fuzzy80211 (fuzzy80211) joins |
| 02:34:41 | | fuzzy80211 quits [Read error: Connection reset by peer] |
| 02:36:22 | | fuzzy80211 (fuzzy80211) joins |
| 02:37:47 | | fuzzy80211 quits [Remote host closed the connection] |
| 02:45:20 | | fuzzy80211 (fuzzy80211) joins |
| 03:45:33 | | nicolas17 quits [Quit: Konversation terminated!] |
| 04:18:11 | | SootBector quits [Remote host closed the connection] |
| 04:18:33 | | SootBector (SootBector) joins |
| 04:19:39 | | SootBector quits [Remote host closed the connection] |
| 04:19:56 | | SootBector (SootBector) joins |
| 05:02:43 | | HP_Archivist quits [Read error: Connection reset by peer] |
| 05:50:58 | | DogsRNice quits [Read error: Connection reset by peer] |
| 07:19:02 | | BearFortress_ joins |
| 07:19:25 | | BearFortress quits [Ping timeout: 260 seconds] |
| 07:57:00 | | JaffaCakes118_2 quits [Remote host closed the connection] |
| 08:01:54 | | JaffaCakes118 (JaffaCakes118) joins |
| 09:35:11 | | tzt quits [Ping timeout: 258 seconds] |
| 11:19:47 | | tzt (tzt) joins |
| 14:54:54 | | MrMcNuggets (MrMcNuggets) joins |
| 15:59:21 | | HP_Archivist (HP_Archivist) joins |
| 17:53:31 | <xkey> | WBM unreachable? ._. |
| 18:12:03 | | MrMcNuggets quits [Quit: WeeChat 4.3.2] |
| 18:53:35 | | corentin quits [Ping timeout: 260 seconds] |
| 19:21:14 | | Dango360 quits [Read error: Connection reset by peer] |
| 19:21:33 | | Dango360 (Dango360) joins |
| 19:43:11 | <that_lurker> | who IA seems to be |
| 19:43:22 | <that_lurker> | s/who/whole |
| 19:51:09 | <katia> | https://www.library.universiteitleiden.nl/news/2024/10/he-internet-archive-takes-over-foreign-dissertations-from-ubl |
| 19:56:54 | <pokechu22> | 3.2 km, wow |
| 19:59:52 | | nicolas17 joins |
| 20:06:03 | | corentin joins |
| 20:17:00 | | corentin quits [Ping timeout: 260 seconds] |
| 20:20:23 | | corentin joins |
| 20:44:52 | | luckcolors quits [Quit: http://quassel-irc.org - Chat comfortably. Anywhere.] |
| 20:57:58 | <pokechu22> | I just got a dubious alert() about a security breach on web.archive.org/save/ - I closed it but something bad seems to be happening |
| 20:58:43 | <@JAA> | https://transfer.archivete.am/inline/GuPHu/wbm_alert.png |
| 20:58:46 | <@JAA> | Aye |
| 21:00:33 | <that_lurker> | oh no |
| 21:01:52 | <@JAA> | The alert is coming from the polyfill.archive.org script. |
| 21:01:55 | | corentin quits [Ping timeout: 260 seconds] |
| 21:02:46 | <that_lurker> | https://img.kuhaon.fun/u/5TLYJs.gif |
| 21:02:51 | <lea> | > Have you ever felt like the Internet Archive runs on sticks and is constantly on the verge of suffering a catastrophic security breach? It just happened. See 31 million of you on HIBP! |
| 21:03:42 | | sralracer (sralracer) joins |
| 21:04:21 | | corentin joins |
| 21:04:36 | | luckcolors (luckcolors) joins |
| 21:05:15 | | luckcolors quits [Client Quit] |
| 21:05:45 | | luckcolors (luckcolors) joins |
| 21:11:14 | | luckcolors quits [Client Quit] |
| 21:27:14 | <katia> | :/ |
| 21:27:23 | | stuffednose joins |
| 21:29:05 | | q3k|m joins |
| 21:31:04 | <@JAA> | Obviously, everything is speculation at this point. I do wonder why the compromise message is on the polyfill subdomain rather than archive.org proper. |
| 21:31:25 | <Barto> | remember that polyfill was iffy at some point |
| 21:31:31 | <Barto> | when using the original polyfill domain |
| 21:32:09 | <Barto> | good luck with the folks working with the Incident Response |
| 21:32:26 | <@JAA> | I don't think IA was ever using that one, but yeah. |
| 21:33:17 | | Swryl joins |
| 21:34:47 | <pokechu22> | Is the polyfill domain also used on archive.org proper, or only web.archive.org? It does seem to be used for web.archive.org itself (and not just for better replay of websites) |
| 21:37:07 | <Barto> | blog.archive.org seems down also. |
| 21:37:13 | <Barto> | oh, nvm it is up |
| 21:37:21 | <Barto> | just slow to respond |
| 21:38:08 | <lea> | the polyfill is also used on archive.org proper |
| 21:41:53 | | stuffednose quits [Client Quit] |
| 21:43:40 | | Xanthon (Xanthon) joins |
| 21:47:16 | | Video joins |
| 21:49:33 | <masterX244> | thanks god it looks like they overlooked the chance for sniffing/stealing tokens, some tokens would have been massively dangerous like ark_iver, and IA employees doing core business |
| 21:54:05 | | danwellby joins |
| 21:54:18 | <@JAA> | I think we have to wait for IA's assessment about that. |
| 21:56:01 | | night (night) joins |
| 22:02:44 | | thalia (thalia) joins |
| 22:06:19 | <Barto> | i doubt even a_kiver is allowed to tell us anything before an official message by IA, which is normal |
| 22:06:50 | <Barto> | did anyone had time to !ao archive.org ? :p |
| 22:07:08 | <pokechu22> | I did, yeah |
| 22:07:19 | <pokechu22> | including removing the global ignore that normally stops that from working |
| 22:10:57 | | knecht (knecht) joins |
| 22:16:22 | | Grzesiek11 joins |
| 22:19:01 | | Webuser832 joins |
| 22:23:18 | | nyakase (nyakase) joins |
| 22:23:52 | | magmaus3 (magmaus3) joins |
| 22:25:20 | | corentin quits [Ping timeout: 260 seconds] |
| 22:27:36 | | corentin joins |
| 22:27:42 | <Flashfire42> | https://x.com/troyhunt/status/1844136762727448644 |
| 22:31:47 | | magmaus3 quits [Read error: Connection reset by peer] |
| 22:36:03 | | magmaus3 (magmaus3) joins |
| 22:36:32 | <nicolas17> | inb4 script kiddies scraped email addresses from public item metadata and called it a "breach" |
| 22:40:29 | | nicolas17 is now authenticated as nicolas17 |
| 22:44:50 | <sralracer> | https://x.com/troyhunt/status/1844146837609120109 |
| 22:45:19 | <sralracer> | https://www.bleepingcomputer.com/news/security/internet-archive-hacked-data-breach-impacts-31-million-users/ |
| 22:45:35 | <nicolas17> | well there it is |
| 22:46:21 | <nicolas17> | re-asking, are our uploads to IA paused, or are we going to hit them with uploads the instant they're back? |
| 22:46:29 | | magmaus3 quits [Read error: Connection reset by peer] |
| 22:47:21 | <DigitalDragons> | IA uploads are still functional |
| 22:47:36 | <nicolas17> | oh really |
| 22:50:35 | <DigitalDragons> | I see archive.php tasks being submitted and completed |
| 22:52:58 | <nicolas17> | welp my samsung-grab script requests archive.org/metadata/<item> to double-check that it's not already archived so I'll have to patch that out anyway >.> |
| 22:54:45 | <@JAA> | bcrypt :-) |
| 22:54:54 | <sralracer> | https://x.com/troyhunt/status/1844148532703526928 |
| 22:56:55 | | magmaus3 (magmaus3) joins |
| 22:57:52 | <Flashfire42> | https://x.com/haveibeenpwned/status/1844146274758689206 |
| 22:58:43 | <nicolas17> | JAA: so many "unsalted md5 passwords" in HIBP breach notifications... |
| 23:05:55 | <steering> | oh wow |
| 23:05:58 | <steering> | that was a fast IA dump |
| 23:06:29 | <nicolas17> | steering: wdym fast? |
| 23:06:35 | <steering> | oh, from last month |
| 23:07:57 | <steering> | I didn't even realize I ever had an account with IA under that domain :D |
| 23:08:48 | <steering> | also, >ia outage page links to twitter |
| 23:08:50 | <steering> | i cry |
| 23:09:02 | <Fusl> | i hope they're going to comply with gdpr's 72 hours notification period for this breach |
| 23:11:45 | <qwertyasdfuiopghjkl> | Looks like the breach happened on 2024-09-30 or earlier: https://nitter.lucabased.xyz/troyhunt/status/1844148532703526928 |
| 23:14:13 | <qwertyasdfuiopghjkl> | (https://xcancel.com/troyhunt/status/1844148532703526928 if that link doesn't work) |
| 23:17:27 | | sralracer quits [Client Quit] |
| 23:20:30 | | magmaus3 quits [Ping timeout: 258 seconds] |
| 23:22:49 | | Dj-Wawa (Dj-Wawa) joins |
| 23:23:16 | | linuxgemini (linuxgemini) joins |
| 23:28:09 | <Video> | Like 2/3 of the data in the leak was already public to begin with |
| 23:31:07 | | magmaus3 (magmaus3) joins |
| 23:32:39 | <nicolas17> | Video: how so? |
| 23:34:39 | <pokechu22> | 22:36 <nicolas17> inb4 script kiddies scraped email addresses from public item metadata and called it a "breach" |
| 23:34:51 | <mgrandi> | Hopefully they nuke all the passwords and force resets |
| 23:34:53 | <pokechu22> | (they didn't, but the info is basically those two things and bcrypted passwords) |
| 23:36:39 | <nicolas17> | I'd love to know what % of users actually uploaded items |
| 23:37:08 | <pokechu22> | ah, I guess that is a valid consideration |
| 23:38:27 | <Video> | I'm personally not concerned |
| 23:39:08 | <@JAA> | IA is back. |
| 23:40:00 | <nicolas17> | wonder if there will be a forced pw reset |
| 23:40:41 | <pokechu22> | https://archive.org/account/index.php?settings=1 doesn't seem to be loading for me |
| 23:40:49 | <TheTechRobo> | yeah, was just about to say |
| 23:41:58 | <pokechu22> | looks like I also went from being signed in a few minutes ago to not signed in |
| 23:42:21 | <nicolas17> | it might say "SIGN IN" before the page fully loads |
| 23:42:43 | <@JAA> | Something something script hell :-) |
| 23:42:59 | <pokechu22> | https://archive.org/services/user.php?op=whoami doesn't seem to be loading so that's probably related |
| 23:43:01 | <nicolas17> | hmm or I might have actually gotten logged out |
| 23:43:10 | <pokechu22> | ah, or rather it's super slow to load |
| 23:43:45 | <Video> | Probably from all the traffic |
| 23:43:52 | <@JAA> | > Server error 504 -- probably because our servers are overloaded right now. |
| 23:44:02 | <TheTechRobo> | I hope we get an explanation of exactly what happened from IA. Would be an interesting read. |
| 23:44:28 | <Video> | They'll probably do a security shake-up for sure |
| 23:44:54 | <nicolas17> | oh archive.org is up, WBM is not |
| 23:44:58 | <nicolas17> | I didn't notice that |
| 23:46:52 | <monika> | hugops to IA sysadmins dealing with this |