[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Message-ID: <4C319428.7010406@gmail.com>
Date: Mon, 05 Jul 2010 10:13:28 +0200
From: PsychoBilly <zpamh0l3@...il.com>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: Vulnerabilities in Google
More like a vuln in cluster Musn'tlive
http://www.youtube.com/watch?v=0Hahlo1Bye4#t=3m35s
Response Codes:
» HTTP/1.0 301 Moved Permanently From http://is.gd/dcMxH To http://lmgtfy.com/?q=stfu
» HTTP/1.1 200 OK
# of Meta characters : 0 # of Meta Words : 0
Text to Page Weight Ratio: 19.2% # of Meta Keywords Words :
Canonical Link: N/A
Page loaded: 0.487 seconds Frame Info: No Frames
Page size: 10.4 KB Noframe Info:
# of Words: 157 # of Frames: 0
# of Body Words : 148 # of Cookies: 0
# of Images All: 4; with Alt Text: 0; without Alt Text: 4 # of Links:
All: 10 (External: 2, Internal: 8 ); No Follow: 0 ?
External Links
1. http://twitter.com/lmgtfy
2. http://live.lmgtfy.com
Internal Links
1. #
2. #
3. #
4. #
5. #
6. privacy.html
7. mailto:%73%74%61%66%66@...%6d%67%74%66%79.%63%6f%6d?body=Jim%20and%20Ryan%20are%20awesome%21&subject=I%20love%20LMGTFY%21
8. advertise.html
No-Follow Links
Robots.txt no IP address : 209.20.88.2
favicon.ico file: yes ; script: yes Country: United States
# of External JavaScript: 3 # of Imagemaps: 0
# of Objects (Flash): 0 Clickstream Reporting: [Google Analytics]
********************************************************************************************************
>>> [http://www.seo-browser.com/showdetail.php?type=6&link=http://lmgtfy.com/?q=stfu]
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd">
<html xml:lang='en' xmlns='http://www.w3.org/1999/xhtml'>
<head>
<meta content='text/html;charset=UTF-8' http-equiv='content-type' />
<meta content='For all those people that find it more convenient to bother you with their question rather than google it for themselves.' name='description' />
<meta content='google, search, funny, comedy' name='keywords' />
<meta content='mailto+http:sha1:359d8b83150288115fa3d70bc929b599ede7fdd4' name='microid' />
<meta content='I9eu/xLrRL55X1KF8yY5VGBzNQKAzj/Vrne6Cwg4Eq8=' name='verify-v1' />
<link href='favicon.ico' rel='icon' type='image/x-icon' />
<link href='lmgtfy.xml' rel='search' title='LMGTFY' type='application/opensearchdescription+xml' />
<title>Let me google that for you</title>
<script src='http://ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js' type='text/javascript'></script>
<script src='bundle.js?1277924581' type='text/javascript'></script>
<style rel='text/css'>
* { font-family: arial, sans-serif; }
body { background-color: white; color: #333333; }
#logo { margin-top: -1em; position: relative; top: 2em; }
.logo { font-size: 1.5em; color: #444444; }
input { -moz-box-sizing: content-box; font-family: inherit; }
input.text { background: white; border: 1px solid #cccccc; border-bottom-color: #999999; border-right-color: #999999; color: black; font: 18px arial, sans-serif bold; height: 25px; margin: 0; padding: 5px 8px 0 6px; vertical-align: top; }
input.text:focus { outline: none; }
input#search, input#lucky { background: url("http://www.google.com/images/srpr/nav_logo13.png") repeat scroll center bottom transparent; border: medium none; color: black; cursor: pointer; font: 15px arial, sans-serif; height: 30px; margin: 0;
outline: 0 none; vertical-align: top; }
.button_wrapper { border-bottom: 1px solid #e7e7e7; border-right: 1px solid #e7e7e7; display: inline-block; margin: 3px 0 4px 4px; }
.button_wrapper .inner { background: none repeat scroll 0 0 #eeeeee; border-color: #cccccc #999999 #999999 #cccccc; border-style: solid; border-width: 1px; display: block; height: 30px; }
#fake_mouse { position: absolute; top: 100px; left: 100px; }
#instructions { margin-top: 40px; font-size: 1.1em; color: #999999; width: 350; height: 84px; background: transparent url(images/instructions_bg.png) no-repeat top center; }
#instructions div { line-height: 84px; }
#link_placeholder { height: 90px; }
#link { position: absolute; display: none; padding-bottom: 28px; }
input.link { width: 312px; font-size: 1.2em; text-align: center; border: 1px solid #c2c9ff; color: #555555; background-color: #f4fbff; cursor: pointer; }
#footer { margin-top: 40px; color: #999999; border-top: solid 1px #dddddd; padding-top: 0.5em; text-align: center; }
#footer a { color: #999999; text-decoration: none; padding: 0 1em; }
#footer a:hover { text-decoration: underline; }
#about { margin-top: 0.5em; color: #666666; text-align: center; }
#language { margin-top: 1em; color: #666666; text-align: center; background: white url(/images/worldwide.png) no-repeat center; }
#language select { width: 200px; opacity: 0; }
#copyright { margin-top: 40px; padding: 0.25em; text-align: center; font-size: 0.75em; color: #bbbbbb; background-color: white; }
#link_buttons, #link_message { position: absolute; display: none; }
a.link_button { display: block; float: left; width: 60px; height: 20px; margin: 0 2px; padding: 5px 0; background: transparent url(images/link_button.png) no-repeat center center; color: white; line-height: 20px; text-align: center; font-size:
0.8em; text-decoration: none; }
a.link_button:hover { background-image: url(images/link_button_hover.png); }
#link_message { z-index: 99; width: 332px; height: 32px; background: url(images/link_message.png); color: white; line-height: 32px; text-align: center; font-size: 1em; }
#sponsor { display: none; margin: 0 auto; text-align: center; font-size: 0.9em; }
#sponsor a { display: block; margin: 0 auto; width: 225px; text-decoration: none; }
#sponsor a img { padding-bottom: 5px; width: 120px; height: 90px; border: 0; }
#sponsor p { margin-top: 0; text-align: center; color: #444444; }
#sponsor em { font-weight: bold; font-style: normal; background-color: #ffff99; }
</style>
</head>
<body>
<center>
<div class='logo'>
<span rel='localize[pre_logo]'>let me</span>
<img id='logo' src='http://www.google.com/intl/en_ALL/images/srpr/logo1w.png' />
<span rel='localize[post_logo]'>that for you</span>
</div>
<br />
<br />
<br />
<form>
<input class='text' size='55' title='Google Search' type='text' value='' />
<br />
<span class='button_wrapper'>
<div class='inner'>
<input id='search' rel='localize[search_button]' type='button' value='Google Search' />
</div>
</span>
<span class='button_wrapper'>
<div class='inner'>
<input id='lucky' rel='localize[lucky_button]' type='button' value="I'm Feeling Lucky" />
</div>
</span>
</form>
<div id='alert' style='display:none; color:#666;'></div>
<div id='instructions'>
<div>
Enable javascript to use LMGTFY.
</div>
</div>
<div id='link_placeholder'></div>
<div id='link'>
<input class='link copyable' readonly='readonly' type='text' />
<div id='link_message'></div>
<div id='link_buttons'>
<a class='link_button' href='#' id='copy' rel='localize[link.copy]'>copy</a>
<a class='link_button' href='#' id='reset' rel='localize[link.reset]'>reset</a>
<a class='link_button' href='#' id='tiny' rel='localize[link.shorten]'>tinyurl</a>
<a class='link_button' href='#' id='go' rel='localize[link.go]'>go</a>
</div>
</div>
</center>
<div id='sponsor'>
<img src='/images/sponsored_by.png' />
<a>
<img />
<p></p>
</a>
</div>
<div id='footer'>
<a class='about' href='#' name='about' rel='localize[about]'>About</a>
<a href='privacy.html' rel='localize[privacy]'>Privacy</a>
<a href='http://twitter.com/lmgtfy'>@LMGTFY</a>
<a href='http://live.lmgtfy.com' rel='localize[live]'>Live Stream</a>
<a href='mailto:%73%74%61%66%66@...%6d%67%74%66%79.%63%6f%6d?body=Jim%20and%20Ryan%20are%20awesome%21&subject=I%20love%20LMGTFY%21' rel='localize[contact]'>Contact</a>
<a href='advertise.html' rel='localize[advertise]'>Advertise for $199</a>
</div>
<div id='about' style='display: none'>
<p rel='localize[pitch]'>This is for all those people that find it more convenient to bother you with their question rather than google it for themselves.</p>
<p rel='localize[credit]'>Created by @coderifous and @rmm5t.</p>
<p rel='localize[genesis]'>Inspired during a lunch conversation with @coderifous, @tmassing, @rmm5t, @EricStratton, and @methodvon.</p>
<p rel='localize[translated_by]'></p>
</div>
<div id='language'>
<select>
<option value=''>LMGTFY Worldwide</option>
<option value="af">Afrikaans</option>
<option value="ar">Arabic</option>
<option value="be">Belarusian</option>
<option value="bs">Bosnian</option>
<option value="bg">Bulgarian</option>
<option value="ca">Catalan</option>
<option value="zh">Chinese</option>
<option value="zh-HK">Chinese (Hong Kong)</option>
<option value="zh-TW">Chinese (Taiwan)</option>
<option value="hr">Croatian</option>
<option value="cs">Czech</option>
<option value="da">Danish</option>
<option value="nl">Dutch</option>
<option value="en">English</option>
<option value="eo">Esperanto</option>
<option value="et">Estonian</option>
<option value="fi">Finnish</option>
<option value="fr">French</option>
<option value="ka">Georgian</option>
<option value="de">German</option>
<option value="el">Greek</option>
<option value="he">Hebrew</option>
<option value="hi">Hindi</option>
<option value="hu">Hungarian</option>
<option value="id">Indonesian</option>
<option value="it">Italian</option>
<option value="ja">Japanese</option>
<option value="klingon">Klingon</option>
<option value="ko">Korean</option>
<option value="lv">Latvian</option>
<option value="lt">Lithuanian</option>
<option value="mk">Macedonian</option>
<option value="ms">Malay</option>
<option value="mn">Mongolian</option>
<option value="no">Norwegian</option>
<option value="fa">Persian</option>
<option value="pl">Polish</option>
<option value="pt">Portuguese</option>
<option value="pt-BR">Portuguese (Brazil)</option>
<option value="ro">Romanian</option>
<option value="ru">Russian</option>
<option value="rs">Serbian</option>
<option value="sk">Slovak</option>
<option value="sl">Slovene</option>
<option value="es">Spanish</option>
<option value="sv">Swedish</option>
<option value="tl">Tagalog</option>
<option value="th">Thai</option>
<option value="tr">Turkish</option>
<option value="uk">Ukrainian</option>
<option value="ur">Urdu</option>
<option value="cy">Welsh</option>
</select>
</div>
<div id='copyright'>
© LMGTFY, 2009
|
<span rel='localize[google_owns_google]'>GOOGLE is a trademark of Google Inc.</span>
|
<span rel='localize[disclaimer]'>Not associated with Google™ in any way.</span>
</div>
<img id='fake_mouse' src='images/mouse_arrow.png' style='display: none' />
<script type="text/javascript">
var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");
document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));
</script>
<script type="text/javascript">
try {
var pageTracker = _gat._getTracker("UA-6370983-1");
pageTracker._trackPageview();
} catch(err) {}</script>
</body>
</html>
</textarea/> <a href="http://www.commerx.com"><img src="images/commerx.png" style="border: none" align="right"/></a>
</body>
</html>
*******************************************************************************************************************
>> http://www.seo-browser.com/showdetail.php?type=6&link=http://lmgtfy.com/bundle.js?1277924581
>> http://pbid.pro-market.net/ WTF??
// Copyright (c) Jim Garvin (http://github.com/coderifous), 2008.
// Dual licensed under the GPL (http://dev.jquery.com/browser/trunk/jquery/GPL-LICENSE.txt) and MIT (http://dev.jquery.com/browser/trunk/jquery/MIT-LICENSE.txt) licenses.
// Written by Jim Garvin (@coderifous) for use on LMGTFY.com.
// http://github.com/coderifous/jquery-localize
// Based off of Keith Wood's Localisation jQuery plugin.
// http://keith-wood.name/localisation.html
(function($) {
$.localize = function(pkg, options) {
var $wrappedSet = this;
var intermediateLangData = {};
options = options || {};
var saveSettings = {async: $.ajaxSettings.async, timeout: $.ajaxSettings.timeout};
$.ajaxSetup({async: false, timeout: (options && options.timeout ? options.timeout : 500)});
function loadLanguage(pkg, lang, level) {
level = level || 1;
var file;
if (options && options.loadBase && level == 1) {
intermediateLangData = {};
file = pkg + '.json';
jsonCall(file, pkg, lang, level);
}
else if (level == 1) {
intermediateLangData = {};
loadLanguage(pkg, lang, 2);
}
else if (level == 2 && lang.length >= 2) {
file = pkg + '-' + lang.substring(0, 2) + '.json';
jsonCall(file, pkg, lang, level);
}
else if (level == 3 && lang.length >= 5) {
file = pkg + '-' + lang.substring(0, 5) + '.json';
jsonCall(file, pkg, lang, level);
}
}
function jsonCall(file, pkg, lang, level) {
if (options.pathPrefix) file = options.pathPrefix + "/" + file;
$.getJSON(file, null, function(d){
$.extend(intermediateLangData, d);
notifyDelegateLanguageLoaded(intermediateLangData);
loadLanguage(pkg, lang, level + 1);
});
}
function defaultCallback(data) {
$.localize.data[pkg] = data;
var keys, value;
$wrappedSet.each(function(){
elem = $(this);
key = elem.attr("rel").match(/localize[(.*?)]/)[1];
value = valueForKey(key, data);
if (elem.attr('tagName') == "INPUT") {
elem.val(value);
}
else {
elem.html(value);
}
});
}
function notifyDelegateLanguageLoaded(data) {
if (options.callback) {
// pass the defaultCallback so it can be used in addition to some custom behavior
options.callback(data, defaultCallback);
}
else {
defaultCallback(data);
}
}
function valueForKey(key, data){
var keys = key.split(/./);
var value = data;
while (keys.length > 0) {
if(value){
value = value[keys.shift()];
}
else{
return null;
}
}
return value;
}
function regexify(string_or_regex_or_array){
if (typeof(string_or_regex_or_array) == "string") {
return "^" + string_or_regex_or_array + "$";
}
else if (string_or_regex_or_array.length) {
var matchers = [];
var x = string_or_regex_or_array.length;
while (x--) {
matchers.push(regexify(string_or_regex_or_array[x]));
}
return matchers.join("|");
}
else {
return string_or_regex_or_array;
}
}
var lang = normaliseLang(options && options.language ? options.language : $.defaultLanguage);
if (options.skipLanguage && lang.match( regexify(options.skipLanguage) )) return;
loadLanguage(pkg, lang, 1);
$.ajaxSetup(saveSettings);
};
$.fn.localize = $.localize;
// Storage for retrieved data
$.localize.data = {};
// Retrieve the default language set for the browser.
$.defaultLanguage = normaliseLang(navigator.language
? navigator.language // Mozilla
: navigator.userLanguage // IE
);
// Ensure language code is in the format aa-AA.
function normaliseLang(lang) {
lang = lang.replace(/_/, '-').toLowerCase();
if (lang.length > 3) {
lang = lang.substring(0, 3) + lang.substring(3).toUpperCase();
}
return lang;
}
})(jQuery);
// proMarket plugin - easy insert promarket tracking snippet with site id and keyword
// By James Garvin (coderifous)
// Copyright 2009 - License: MIT
(function($) {
$.proMarket = function(siteId, keyWords) {
$("body").proMarket(siteId, keyWords);
};
$.fn.proMarket = function(siteId, keyWords) {
this.append(
'<IFRAME WIDTH="1" HEIGHT="1" MARGINWIDTH="0" MARGINHEIGHT="0" HSPACE="0" ' +
'VSPACE="0" FRAMEBORDER="0" SCROLLING="no" ' +
'SRC="http://pbid.pro-market.net/engine?site=' + siteId.toString() +
';size=1x1;kw=' + keyWords + '"></IFRAME>');
return this;
};
})(jQuery);
// QueryString Engine v1.0.1 (modified)
// By James Campbell (modified by coderifous)
(function($) {
$.querystringvalues = $.queryStringValues = $.QueryStringValues = $.QueryStringvalues = $.queryStringValues = $.queryStringvalues = $.querystringValues = $.getqueryString = $.queryString = $.querystring = $.QueryString = $.Querystring =
$.getQueryString = $.getquerystring = $.getQuerystring = function(options)
{
defaults = { defaultvalue: null };
options = $.extend(defaults , options);
qs = location.search.substring(1, location.search.length);
if (qs.length == 0) return options.defaultvalue;
qs = qs.replace(/+/g, ' ');
var args = qs.split('&');
for (var i = 0; i < args.length; i ++ )
{
var value;
var pair = args[i].split('=');
var name = gentlyDecode(pair[0]);
if (pair.length == 2)
{
value = gentlyDecode(pair[1]);
}
else
{
value = name;
}
if (name == options.id || i == options.id-1)
{
return value;
}
}
return options.defaultvalue;
};
})(jQuery);
$.sendToClipboard = function(text) {
var copier = $("#flash_copier");
if (copier.size() == 0) {
copier = $('<div id="flash_copier"></div>').appendTo("body");
}
copier.html('<embed src="_clipboard.swf" FlashVars="clipboard='+encodeURIComponent(text)+'" width="0" height="0" type="application/x-shockwave-flash"></embed>');
};
$.fn.centerOver = function(element, topOffset, leftOffset) {
topOffset = topOffset || 0;
leftOffset = leftOffset || 0;
var self = this;
self.css({
top: (element.position().top + element.outerHeight()/2 - self.height()/2 + topOffset).px(),
left: (element.position().left + element.outerWidth()/2 - self.width()/2 + leftOffset).px()
});
return self;
};
$.fn.sponsor = function(programFile, callback) {
var self = this;
$.getJSON(programFile, function(program) {
var sponsor = program.slots[rand(program.slots.length)];
var id = sponsor.id;
var anchor = self.find("a");
anchor.attr("href", sponsor.url);
anchor.find("img").attr("src", sponsor.image);
anchor.find("p").html(sponsor.message);
if (pageTracker) {
pageTracker._trackPageview("/sponsor/" + id);
anchor.unbind("click");
anchor.click(function() { pageTracker._trackPageview("/outgoing/sponsor/" + id); });
}
if (callback) callback.call(self);
});
return self;
};
function rand(max) {
return Math.floor(Math.random() * max);
}
Number.prototype.px = function(){ return this.toString() + "px"; };
function gentlyEncode(string) {
return ( encodeURIComponent
? encodeURIComponent(string).replace(/%20(D)?/g, "+$1").replace(/'/g, escape("'"))
: escape(string).replace(/+/g, "%2B").replace(/%20/g, "+") );
}
function gentlyDecode(string) {
return decodeURIComponent ? decodeURIComponent(string) : unescape(string);
}
// default lang necessities
$.localize.data.lmgtfy = {
setup: {
type_question: "Type a question, click a button.",
share_link: "Share the link below.",
or: "or"
},
play: {
step_1: "Step 1: Type in your question",
step_2: "Step 2: Click the Search button",
pwnage: "Was that so hard?",
nice: "It's that easy."
},
link: {
creating: "Creating...",
fetching: "Fetching...",
copied: "URL copied to clipboard",
shortened: "TinyURL copied to clipboard"
}
};
$(function(){
initializeLocalization();
initializeAboutLink();
initializeControls();
var searchString = $.getQueryString({ id: "q" });
var inputField = $("input[type=text]:first");
var fakeMouse = $("#fake_mouse");
var instructions = $("#instructions > div");
var button = ($.getQueryString({ id: "l" }) == "1") ? $("#lucky") : $("#search");
var inputLink = $("#link input.link");
var linkButtons = $("#link_buttons");
var linkMessage = $("#link_message");
if (searchString) {
$.proMarket("120083", gentlyEncode(searchString));
googleItForThem();
}
else
getTheSearchTerms();
function initializeAboutLink() {
$("a[name=about]").click(function() {
$("#about").toggle();
$('html,body').animate({ scrollTop: $("#about").offset().top }, 1000);
return false;
});
linkifyAbout();
}
function initializeControls() {
$('input.copyable').click(function() { $(this).select(); });
$("#link").hover(function(){ linkButtons.fadeIn("fast"); }, function(){ linkButtons.fadeOut("fast"); });
$("#go").click(function(){ window.location = inputLink.val(); return false; });
$("#reset").click(function(){ showTheUrl($(this).attr("url")); return false; });
$("#tiny").click(function(){
linkStatus("link.fetching", 0, true);
$.getJSON("http://json-tinyurl.appspot.com/?callback=?&url=" + gentlyEncode(inputLink.val()), function(data) {
inputLink.val(data.tinyurl).focus().select();
linkStatus("link.fetching", 1500);
});
$(this).hide();
$("#reset").show();
return false;
});
$("#language select").change(function(e){
var l = window.location;
var hostnameMinusSubdomain = l.hostname.match(/[^.]+.(?:[^.]+)$/)[0];
var url = l.protocol + "//" + $(this).val() + "." + hostnameMinusSubdomain + l.pathname;
window.location = url;
});
}
function initializeLocalization() {
var localize_opts = {
pathPrefix: 'lang',
skipLanguage: /^en/,
callback: function(data, defaultCallback) {
defaultCallback(data);
linkifyAbout();
}
};
var lang = $.getQueryString({ id: "lang" }) || sniffUrlForLanguage();
if (lang) localize_opts.language = lang;
$("[rel*=localize]").localize('lmgtfy', localize_opts);
}
function sniffUrlForLanguage() {
return sniffSubdomainForLanguage() || sniffDomainForLanguage();
}
function sniffSubdomainForLanguage() {
var first = window.location.hostname.split(".")[0];
var match = first.match(/^[a-z]{2}(?:-[a-z]{2})?$/i);
return match ? match[0] : null;
}
function sniffDomainForLanguage() {
var domainLanguageOverrides = {
"haddkeressemmegneked": "hu",
"klingon": "xx-KL"
};
for (var domain in domainLanguageOverrides) {
if (window.location.hostname.match(domain)) {
return domainLanguageOverrides[domain];
}
}
return null;
}
function langString(langkey) {
var keys = langkey.split(/./);
return keys.length == 1 ? $.localize.data.lmgtfy[keys[0]] : $.localize.data.lmgtfy[keys[0]][keys[1]];
}
function linkifyAbout() {
$("#about p").each(function() {
$(this).html($(this).text().replace(/(@([a-zA-Z0-9_]+))/g, '<a href="http://twitter.com/$2">$1</a>'));
});
}
function instruct(langkey) {
instructions.html(langString(langkey));
}
function linkStatus(langkey, millis, stuck) {
millis = millis || 2500;
linkMessage.html(langString(langkey)).show().centerOver(inputLink);
if (!stuck) {
setTimeout(function(){ linkMessage.fadeOut(millis/4*3); }, millis/4);
}
}
function getTheSearchTerms() {
// $("#alert").show();
$("#sponsor").sponsor("/s/program.json", function() { this.fadeIn(1000); });
$("form").submit(function(){ $("#search").click(); return false; });
instruct("setup.type_question");
inputField.focus().select();
$("input[type=button]").click(function(e){
instruct("setup.share_link");
var l = window.location;
var url = l.protocol + "//" + l.hostname + l.pathname + "?";
var searchString = gentlyEncode(inputField.val());
$.proMarket("120083", searchString);
strings = [ "q=" + searchString ];
if (this.id == "lucky") strings.push("l=1");
url += strings.join("&");
showTheUrl(url);
});
}
function showTheUrl(url) {
$("#copy").hide();
$("#link").centerOver($("#link_placeholder")).show();
$("#reset").attr("url", url).hide();
$("#tiny").show();
linkStatus("link.creating", 1500);
inputLink.val(url).focus().select();
linkButtons.centerOver(inputLink, 28);
}
function googleItForThem() {
if ($.getQueryString({ id: "fwd" })) redirect();
$("body").css("cursor", "wait");
fakeMouse.show();
instruct("play.step_1");
fakeMouse.animate({
top: (inputField.position().top + 15).px(),
left: (inputField.position().left + 10).px()
}, 1500, 'swing', function(){
inputField.focus();
fakeMouse.animate({ top: "+=18px", left: "+=10px" }, 'fast', function() { fixSafariRenderGlitch(); });
type(searchString, 0);
});
function type(string, index){
var val = string.substr(0, index + 1);
inputField.attr('value', val);
if (index < string.length) {
setTimeout(function(){ type(string, index + 1); }, Math.random() * 240);
}
else {
doneTyping();
}
}
function doneTyping(){
instruct("play.step_2");
fakeMouse.animate({
top: (button.position().top + 10).px(),
left: (button.position().left + 30).px()
}, 2000, 'swing', function(){
var key = $.getQueryString({ id: "n" }) == 1 ? "play.nice" : "play.pwnage";
instruct(key);
button.focus();
setTimeout(redirect, 2000);
});
}
function redirect(){
if ($.getQueryString({ id: "debug" })) return;
var google = "http://vanillaresults.com/?q=";
if (button.attr("id") == $("#lucky").attr("id")) {
google = "http://www.google.com/search?hl=en&btnI=I%27m+Feeling+Lucky&pws=0&q=";
}
window.location = google + gentlyEncode(searchString);
}
function fixSafariRenderGlitch() {
if ($.browser.safari) inputField.blur().focus();
}
}
});
</textarea/> <a href="http://www.commerx.com"><img src="images/commerx.png" style="border: none" align="right"/></a>
</body>
</html>
************************ Cluster #[[ musnt live ]]
> Hello Full Disclosure
>
> I want to warn you about security vulnerabilities in Google
>
> -----------------------------
> Advisory: Vulnerabilities in Google
> -----------------------------
> URL: http://dont.me.speak.engrish
> -----------------------------
> Affected products: Google
> -----------------------------
> Timeline:
>
> 05:55 02.07.2010 - woke up and scratched anal crevice
> 06:01 02.07.2010 - look in mirror and say da
> 06:04 02.07.2010 - determined to make advisory
> 06:12 02.07.2010 - stopped masturbating when Mamulya knocked on door
> 06:14 02.07.2010 - Как ты себя чувствуешь?
> 06:20 02.07.2010 - "Mamulya Старая баба!"
> 06:22 02.07.2010 - "Хватит тебе вести себя как сука."
> 06:40 02.07.2010 - started Safari
> 06:43 02.07.2010 - went to Google
> 06:44 02.07.2010 - typed '1=1
> 06:50 02.07.2010 - announced at my site
> 06:51 02.07.2010 - disclosed at my site
> 07:03 02.07.2010 - informed Google
>
> -----------------------------
> Details:
> See link.
>
> Full path disclosure:
> http://is.gd/dcMxH
>
>
> Best wishes& regards,
> MusntLive
> Administrator of Hackers Globalwide
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists