Warning! Possibily troll invasion!
 

Guys, I wanna to warn to a possibility invasion of a troll and lamer

He tells you that you have produced an amazig application but this only a script for delete ALL from your phone and SD!

He infested an italian forum LINK whit a .deb attachement

He wrote in all the section of forum hoping someone will fall into his trap

In the italian forum his name is BELTAMAN TEAM

Re: Warning! Possibily troll invasion!
 

Here is his post. (minus link to script which appears to have been removed and the user BANNED!)



Ciao tutti, prima volta che vi scrive prego scusa per italiano poco saporito. Abbiamo creato piccolo script saporito che vi sarà molto buono a fare un po di pulizia con files temp di Maemo. Esatta mente, script Beltazor esegui un Clean di lista pacchetti, un refix di dipendenze, un update di libreria per anteprime di thumb e cancellando tutti i files temporanei con solo click. Per utilizzare beltazor dovete essere in rete, prende anche un update della lista pacchetti. Beltazor, contiene righe di codice che, oltre ad eseguire chiacchierato prima, installa nel N900 un driver Video per fotocamera frontale specchio (lrende piu veloce), installa sufinestra di applicazione fotocamera (soli su applicazione Fotocamera) opzione (link dinamico bin) di cattura video (verso gstreamer) o foto direttamente con fotocamera specchio! Bello news vero popoli? Driver di cattura fotocamera anteriore, essendo ottimizzato by the Beltaman.uk team, puo di catturare e registrare ottima qualità fluide direttamente da fotocamera di frontale. In attesa di pubblicare video saporito, concedere deb in allegato. Be sure connessi con internet e pazientare che n900 riavvia piano piano di potere poi usufruire per Beltazor Application e funzioni piu addizionate di applicazione Fotocamera! Ciao, buon anno tutti felice dal team di Beltaman.uk

Scusate se usa nostro Italiano poco pulito presto novo aggionamenti tante piu bellissime novità! Vostro è sito SAPORITO!

Google translate sez:

Hello all, first time you write please excuse for a little Italian flavor. We have created tasty little script that will be very good at doing some cleanup of temp files with Maemo. Exact mind, run a script Beltazor Clean list of packages, a refix of dependencies, update the library for a preview of thumb and delete all temporary files with one click. To use beltazor must be online, also take a list of update packages. Beltazor contains lines of code that not only talked the first run, get a video driver for N900 in the front camera mirror (lrende faster), get the application sufinestra camera (only on camera application) option (dynamic link bin) video capture (to gstreamer) or photos directly to the camera mirror! Bello real news people? Front camera capture driver, being optimized by the Beltaman.uk team can capture and record high quality fluid directly from the camera front. Waiting to publish video tasty grant deb attached. Be sure the Internet and related patient n900 power then restart slowly to enjoy Beltazor Application and add more functions to the camera application! Hello, happy new year all the teams Beltaman.uk

Sorry if you use our neat little Italian soon novo Update on many more wonderful news! Your site is TASTY!

I put this up because if you see the same style of post you'll know to be careful.

Re: Warning! Possibily troll invasion!
 

Kinky. Notice how he says you must make sure you have internet? Anyone wanna bet something maliciously deleting your data isn't simultaneously sending it online somewhere?

(If I was a risk taker I'd run Backupmenu on my entire device, save those backup archive files elsewhere off-device, plug it up to a WiFi access point which fakes internet throughput, and then run the distributed file through strace. Then put the backup archives and a kernel image back on the device, reflash kernel, and unpack all the backups. That way if the son-of-a-***** deletes everything, the backups hopefully restore it all. I actually like my N900 too much to do that, but still. Someone willing to reflash probably could make it happen.)

At any rate, thanks for the warning.

Re: Warning! Possibily troll invasion!
 

No, i've controlled the .deb and it content only a script whit a series of "rm -r" (sh command to remove a folder)

Re: Warning! Possibily troll invasion!
 

what a dog... thanks a lot for the info.

reminder to think twice before installing a deb from a new user....

Re: Warning! Possibily troll invasion!
 

Lol. Yet another moral that closed-source binaries are bad, and need to be handled with caution.

At any rate, any chance you could give an overview of how you ran the .deb in a controlled manner? Or just point me to a link or something - I'm happy learning on my own if I know at least vaguely what direction to head in.

Re: Warning! Possibily troll invasion!
 

That's not a troll.
A Trojan or malware would better describe this $#!+>|^.

Re: Warning! Possibily troll invasion!
 

Makes you wonder how many other times this has happened.

Re: Warning! Possibily troll invasion!
 

It's possible to investigate without installing/running with:

to extract the files in the package

to extract the scripty parts

It won't help you see inside binary files, though.

Re: Warning! Possibily troll invasion!
 

Thanks for the heads up Veleno.

Hate to think how many have already fallen foul of this.