Hacker News new | ask | show | jobs
by FridayWithJohn 4622 days ago
It is a false positive as can be seen here: https://twitter.com/rasmus/status/393258147025932288/photo/1 Bascially it is complaining about a JS file that is actually meant to be there.
2 comments
icebraining 4622 days ago
What if the JS file itself was replaced?
link
FridayWithJohn 4622 days ago
@icebraining, You're right! The file has indeed been changed a lot lately. In fact as can be seen here: http://lerdorf.com/static.log.gz that file has changed in size from: 2602 bytes to 5821 to 1279 all in the space of 25 hours... that is really suspicious
link
babawere 4622 days ago
Not some why they think its false positive ... I know server logs don't lie
link
kbenson 4622 days ago
Err, often they do. Or more correctly, they often don't show something you think they would if it happened.

Logs show a subset of what has happened. There's no way to prove they are showing everything, so there's no way to use them to prove what did not happen.

link
Guvante 4622 days ago
Only if you misread the message, Google is saying "the following piece of code injects things", not "this is the exact code that injects things".
link