Hey everybody,
So when I got started with Rails a couple of years ago, I create this Open Mic community website called Capo.
I've since made it open source:
Anyway - recently, I've been seeing a lot of weird activity on the site, and I'm wondering if anybody can think of what's happening.
I'm suspecting foul play - but I'm am the farthest thing from a security expert, so I'm wondering if anybody has any weigh in on this.
Here's what's happening.
I have a resource called Open Mic.
Regular users can create an open mic with all the fields except for "Published", which is reserved for admin users.
Basically - it allows people to submit open mics, and then admin users go in a publish them.
I haven't really been doing anything with the site, but recently, there's been an unusual amount of gibberish submissions for open_mics.
So I started browsing the data, and although I can't exactly tell what - it looks like someone might be trying to hack my site. Gibberish always seems to signal that.
Most of the fields are filled out with just gibberish, but the Postal Code field seems to have some URLs.
For example, one entry has this Postal Code:
Now, here's the way I see it:
1) Either someone is just trying out the website to see what it can do
2) Someone is actively trying to create some malicious attack on my site
3) Someone is running a bot that is submitting open mics
The only thing I can think of right now is adding a CAPTCHA check.
But I was wondering if anybody has any insight as to what someone might be trying to do. I don't recognize the attack if it is one.
I'm not particularly worried because 1) - All my presentation of the data is escaped because I'm using ERB to present my data, 2) I'm not publishing any of these entries.
I just thought I'd post because it would be very interesting to learn about some of these malicious attacks.
Thanks.
-cli23