ringofbrodgar.com appears to have been hijacked

[IainBruce]

Forgive me, I'm not terribly sure where to post this, but having spent some hours on ringofbrodgar.com (the wiki) while playing Haven and Hearth, my router logs indicated that for the entire time I was online, I was recieving multiple HTTP requests per second scanning every port of my router. My router only logged this because it considers it an attempted DDoS. Now I'm sure the creators of Haven and Hearth did not intend this, but it would appear that ringofbrodgar.com is being used to DDoS anyone who opens it. I felt it important to inform people of this and hopefully draw the attention of the owners of Haven & Hearth; It IS possible that it is simply a major bug in the page causing it to spam routers constantly, but I'm sure nobody wants a wiki that launches DoS attacks against you, whether erroneously or by a third-party hack.

[loftar]

Just for the record, the Wiki is not run by us. However, I don't see it exhibiting the behavior you describe. Did you verify with your logs that the port scan did indeed originate from ringofbrodgar.com and wasn't just coincidental? It's the kind of thing that happens every now and then when you're on the Internet, after all; that it happened while you were browsing ringofbrodgar.com could very well have been a pure coincidence.

I was recieving multiple HTTP requests per second scanning every port of my router.

I think you mean TCP requests.

[IainBruce]

They were made via HTTP, and yes, the router logs stated the source was ringofbrodgar.com. However with javascript disabled this oddly does not happen...

[borka]

Nope

[mvgulik]

I have a hard time taking this seriously. Not that I could do anything about it if there was a problem anyway, as I'm not a RoB wiki Bureaucrat/Owner.
I currently only see some nice story. But no real usable data in support of this story.
Ergo: ... Sitting back and waiting for things to really break, or blow over.

[Metruption]

Just get out wireshark, click around the wiki for a few minutes and have a look at the packet capture

[borka]

Just get out wireshark, click around the wiki for a few minutes and have a look at the packet capture

And what did you find ?!?

[loftar]

Just get out wireshark, click around the wiki for a few minutes and have a look at the packet capture

Ain't gonna do much good when there's a NAT router in between.

[Metruption]

Just get out wireshark, click around the wiki for a few minutes and have a look at the packet capture

And what did you find ?!?

I found nothing because I haven't looked yet ^:)

[loftar]

They were made via HTTP

How would you even know the protocol if it doesn't get a chance to connect? :)