MovableType 3.0D.
This is the strangest thing. I went to my blog's mt.cgi page this morning and where the "news" should be on the right hand side is some strange site for fantasy football!?!? I loaded the mt.cgi pages of other 3.0D blogs that I have done on other servers and they are not displaying this problem. They show the latest news from SixApart.com as they should.
Here's what I see (using the image link is not working):
Click to view 30K screen shot
It's showing this way from my Mac as well as my PC.
Any ideas?
Full Version: Very strange mt.cgi dislay
You might take a look at your mt.cfg and see if someone's added a setting for "NewsboxURL" and set it to point at the fantasy football web site.
Tried that. Went through every line in the mt.cfg file and nothing like that. Nothing close.
Then I deleted the mt.cfg file completely and replaced it with a fresh file (with necessary info, of course). Still seeing fantasy football instead of news. I'm very concerned that my site has been spammed/hacked in some way. I opened a support ticket.
Then I deleted the mt.cfg file completely and replaced it with a fresh file (with necessary info, of course). Still seeing fantasy football instead of news. I'm very concerned that my site has been spammed/hacked in some way. I opened a support ticket.
If it's not the mt.cfg file, I'd next suspect the template used to produce that page: (mt.cgi dir)/tmpl/cms/list_blog.tmpl (I believe).
After that, I'd wonder if someone implemented some sort of redirect on your server, redirecting the request for the MT News to the fantasy football server.
Whatever it is, I'm sure Six Apart support will be able to get to the bottom of it.
After that, I'd wonder if someone implemented some sort of redirect on your server, redirecting the request for the MT News to the fantasy football server.
Whatever it is, I'm sure Six Apart support will be able to get to the bottom of it.
I completely replaced the extlib, lib, schemas, tmpl and tools folders from original copies (fresh from the download with no changes). I also replaced every .cgi file. The only thing that I didn't replace was my plugins folder since it would be a P.I.A. to redo. No dice, the stupid page is still there.
I can only get rid of it by editing the list_blog.tmpl file to remove the line
So you may be right about the redirect coming at the server level. I've also written to support with my hosting company to see if they see any suspect activity.
After some reasearch, I'm convinced that is exactly what is going on.
The site it's pulling is: http://digimedia.com/
I did some Googling and what's happening is a well-known spyware exploit from these monsters. I'd know exactly what to do if I was only seeing this problem on my PC. But it happens from my Mac, too. *And from someone else that I asked to take a look* I created a priv-less username/password and asked someone to login and they see the redirected page too! Which means it's on my server somehow and considering the fact that I do 98% of my uploading from my Mac I have no idea how it got there. Not to mention the fact that my server is Linux!
At this point I know this isn't a bug report (I didn't know when I originally posted) so a mod is free to move the thread. But don't delete it, as this may happen to someone else and I plan to blog about it when I find out exactly what is going on.
I'm waiting for my host to answer.
I can only get rid of it by editing the list_blog.tmpl file to remove the line
CODE
<TMPL_VAR NAME=NEWS_HTML>
So you may be right about the redirect coming at the server level. I've also written to support with my hosting company to see if they see any suspect activity.
After some reasearch, I'm convinced that is exactly what is going on.
The site it's pulling is: http://digimedia.com/
I did some Googling and what's happening is a well-known spyware exploit from these monsters. I'd know exactly what to do if I was only seeing this problem on my PC. But it happens from my Mac, too. *And from someone else that I asked to take a look* I created a priv-less username/password and asked someone to login and they see the redirected page too! Which means it's on my server somehow and considering the fact that I do 98% of my uploading from my Mac I have no idea how it got there. Not to mention the fact that my server is Linux!
At this point I know this isn't a bug report (I didn't know when I originally posted) so a mod is free to move the thread. But don't delete it, as this may happen to someone else and I plan to blog about it when I find out exactly what is going on.
I'm waiting for my host to answer.
Here is some information from our developer, Mark:
As Mark mentions, the results are cached. Ezra points out that the cache expires in 24 hours, but if you're using MySQL, you can run this command to clear it:
QUOTE
The site included in the box is digimedia.com:
http://www.digimedia.com/
who own org.com and com.org:
http://www.movabletype.org.com/
http://www.movabletype.com.org/
so it may have been a temporary DNS kaboom, which is now fixed.
Because MT caches the result, www.momathome.com isn't refetching the newsbox until it thinks it needs to, but test.momathome.com was able to fetch it fine when it tried.
This DSLreports post tells why IE users see org.com and com.org a relative lot:
http://www.dslreports.com/shownews/39395
but I'm not sure why an actual DNS server would automatically add .com to an unresolving .org, nor why this user would get digimedia.com when the root domains are different and simply adding .com yields a 404:
http://www.movabletype.org.com/news/newsbox.html
But maybe that'll explain something.
http://www.digimedia.com/
who own org.com and com.org:
http://www.movabletype.org.com/
http://www.movabletype.com.org/
so it may have been a temporary DNS kaboom, which is now fixed.
Because MT caches the result, www.momathome.com isn't refetching the newsbox until it thinks it needs to, but test.momathome.com was able to fetch it fine when it tried.
This DSLreports post tells why IE users see org.com and com.org a relative lot:
http://www.dslreports.com/shownews/39395
but I'm not sure why an actual DNS server would automatically add .com to an unresolving .org, nor why this user would get digimedia.com when the root domains are different and simply adding .com yields a 404:
http://www.movabletype.org.com/news/newsbox.html
But maybe that'll explain something.
As Mark mentions, the results are cached. Ezra points out that the cache expires in 24 hours, but if you're using MySQL, you can run this command to clear it:
CODE
delete from mt_session;
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.