World: r3wp

in my example, you have your own port using your own scheme, and 
its sub-port which is the original system/ports/input. this sub-port 
need not be the original, you can open console:// yourself with your 
own flags (eg. binary). then you can process one char at a time, 
figure out line ending yourself, and send the entire line to the 
other side.

i think I probably need to write some code to make it more clear...

That makes it much more clear.

Hmm... more thinking and lots of questions come up.

Would your above system need WAIT ?

The only way I got console port to work is to set its awake function 
and use WAIT.

Or is there a way to set the handler in a console port?

Anyway, so it seems like you suggest to replace the default port 
at system/ports/input with an equivalent one which the system is 
expecting (ie. a direct/read/lines port), and then the subport can 
be a custom console port with binary, one char at a time stuff.

(It's unclear to me the relationship between a port and its subport. 
I know the port manages the opening/closing of its subport, but how 
can the port in lines mode transfer individual chars from its buffer 
into the subport ? Or do they both receive from the same input simultaneously 
automatically?)

when you're not in pass-thru mode, the only functions that get called 
are read and write. they both work at the binary level (read-io and 
write-io), so the conversion to lines is done by the native code 
under the hood. i don't know if you need pass-thru, though, and whether 
pass-thru will work for system/ports/input.

basically, on read you call read-io on the subport, maybe modify 
the buffer, etc. on write (for the output port), you can do the same, 
modify the buffer, then use write-io on the subport. wait on the 
subport is called by the system whenever wait on your port is called 
(that's why there's a get-sub-port function there).

Anyone know anything Apache exploits?  My site has been defaced http://www.compkarori.co.nz:8090

This was running Mindtouch deki wiki ... but now I get the same rubbish 
at any page so I suspect something is up with Apache.

you have been Hacked By Cyb3rking

do u have direct access to the server?

may need to shut off the various ports first before you can even 
get it resolved

http://tech.yahoo.com/qa/20090328150137AAzlEuc

don't understand the yahoo thing

there's only one port open to the world .. the one for web access

well, going to login to the console and have a poke around

Sorry to hear you've been attacked, Graham.

I hope it is not too much work to get it all back together....Don't 
work all night!

Looks like it was not personal -- just some automated tools seeking 
vulnerabilities.

You seem to be on a fairly recent version of Apache, but that does 
mean you may be some months behind on the security patches:
http://httpd.apache.org/security/vulnerabilities_22.html

actually, I thought Graham was on Apache 1.3*

Server id  says 2.2.3. (that may be just a reply string, not the 
real situation of course).

well, index.php has been changed

I have an idle Cheyenne running on a Linode server without a domain 
name. it's been there for a couple of months now. I was a bit surprised 
to already see bots looking for wordpress, admin pages and attempts 
to submit various scripts for injection in the access log. Well, 
I guess I shouldn't be surprised.

Pity I couldn't run this under Cheyenne

At least I might have a clue how they did this.

well, the home page is now gone

I rm index.php

I would love to see data mining tools that can detect such attempts 
at access in the access log without having to read through the log. 
Do they exist?

wonder if it is a permission issue on the index.php file

I'm ready to bet it was a deki wiki or php vulnerability rather than 
an apache one...

php I bet

now to figure how to backup the mysql files and transfer them to 
a backup of the vm

Looks like I was not the only vm user who was attacked.  Mindtouch 
are investigating.  They suspect a PHP5 vulnerability that I guess 
I should have updated :(

the vulnerability has been identified.  There is a vulnerability 
in the rich text editor which allow a user to upload a php file as 
an image type and then browse to it executing it.  http://xinha.webfactional.com/ticket/1363
 So, not really a php exploit ...

I would have thought that this was pretty basic stuff ... not allowing 
non image types to be uploaded!

Hello everybody, does DRAW works with Linux?

I wrote a software with DRAW with 2 arrow and 2 text (Cartesian axes), 
in windows works, in Linux appear just the vertical row and notihng 
else...

Example:
stats:  [ 
	'arrow 1x0
	'line  10x390  10x10	
	'text 100x10 "EURO"
	'line  10x390  420x390
	'text 350x350 "Days"
	'pen blue
	'line 420x390 420x10
	'text 370x10 "Cash"
	'pen white
	'arrow 0x0
	'line  5x370 15x370
	'line  5x350 15x350
	'line  5x330 15x330
	'line  5x310 15x310
	'line  5x290 15x290
	]

view layout [ box 400x500 effect [draw stats]]

there could be font problems with DRAW under other platforms than 
Windows.

So if I change font ,will it  work?

yes

you have to define the font path

I think you are right, beacause after text Rebol do nothing

how I define Font and Fontpath, and how I can make that work in Windows 
and Linux?

this way ... http://www.compkarori.com/vanilla/display/AGG

THANK YOU!!!!

News to me. Is there a similar trick under OS X?

That's a pretty old post