[HN Gopher] Lets Get Arrested (2019)
___________________________________________________________________
Lets Get Arrested (2019)
Author : disadvantage
Score : 365 points
Date : 2022-02-14 17:23 UTC (5 hours ago)
(HTM) web link (github.com)
(TXT) w3m dump (github.com)
| high_pathetic wrote:
| Or if you want to get arrested in Russia you can go this way
|
| https://www.themoscowtimes.com/2022/02/10/russia-sentences-t...
| vbezhenar wrote:
| Or if you want to get life sentence in UK at 14, you can go
| this way
| https://www.washingtonpost.com/news/worldviews/wp/2015/10/02...
| kiba wrote:
| Is there an update to this story?
| kakkun wrote:
| The two adults that were arrested were not prosecuted. However,
| it seems like the police's stance was, "a crime was committed,
| but we decided to not prosecute based on the context,
| consequences of the crime, etc.", rather than, "there was no
| crime committed"
|
| There's more info from the law firm (in Japanese), but I really
| only know Japanese, not legalese. https://www.yokohama-park-
| law.com/news/20190529.html
| Ourgon wrote:
| Odd, just closing the tab is enough to get rid of the "menace". I
| tried this in Firefox on Linux (my "daily" browser), Chromium on
| Linux, Firefox on Android and Chromium on Android. Those browsers
| were around in 2019, they supported tabs. I know the Japanese
| police suffers from a lack of crime - a luxury problem if there
| is any - but this... is taking that suffering to an unfortunate
| conclusion.
|
| Alternatively, IE6 is still big in Japan and this turns out to be
| quite effective in bringing it down.
| andai wrote:
| There was a page in the early 2000s called the most annoying
| website in the world. It showed a very large (but finite: the
| site itself estimates 30-45 minutes) number of alerts. It also a
| prompt for your name and referred to you by your name.
|
| At the time I knew only HTML so I was blown away by a web page
| "talking" to me, and by inspecting the source I learned about the
| script tag, alerts, prompts, loops and variables.
|
| When it came out, the main browser was Internet Explorer, which
| became unresponsive until you got rid of _all_ of the alerts. You
| could of course use Task Manager, or hold spacebar to go through
| them quickly, but most people didn 't know that.
|
| Edit: holy smokes it's still up!
|
| http://mr.g.graham.tripod.com/
| Solstinox wrote:
| Tripod and Lycos are still around?!
| ghostbrainalpha wrote:
| Lycos is still around but stopped providing free email in
| 2018.
| syspec wrote:
| Wow, out of curiosity I just took Lycos search for a
| spin... The results were pretty darn good!
| HeckFeck wrote:
| By jove, I haven't seen this since primary school! It was
| perhaps 2003-2004, one of the other fellows had just learnt of
| it and he made each of us sit through it all. Since then, I
| have been searching for the lost legend.
|
| A visit was much more _annoying_ in IE6 on Windows 2000, which
| had no way to escape the dialogues.
|
| I believe the original domain was
| "themostannoyingwebsiteintheworld.com". I would wager it is now
| either SEOspam or squatted.
| DaiPlusPlus wrote:
| > which had no way to escape the dialogues.
|
| Ctrl+Alt+Del?
| Operyl wrote:
| Typically disabled on school machines around this time,
| annoyingly enough.
| dymk wrote:
| Ctrl+Shift+Escape sometimes still worked. And if not,
| winkey+r, `taskkill/im iexplore.exe`
| graderjs wrote:
| Bug out. Nuke from orbit.
| EarlKing wrote:
| There was far, FAR worse versions out there. The one that most
| stands out in my mind created an explosion of new pages, all of
| them loading the same sexualized images, at which point a WAV
| autoplays: "Hey, everyone! Look at ME! I'm looking at GAY
| PORN!!!!"
|
| I'm sure that was real popular in the office.
| iqanq wrote:
| Anybody remembers lastmeasure?
| NackerHughes wrote:
| I miss kwalty.com
| ok123456 wrote:
| good times
| foobarian wrote:
| We take it for granted nowadays, but it used to be browsers ran
| single-threaded, so shenanigans in Javascript could take out
| the entire program.
| colejohnson66 wrote:
| In fact, Chrome's original claim-to-fame was that each tab
| was its own process:
| http://www.google.com/googlebooks/chrome/index.html
| jamal-kumar wrote:
| my favorite was this one which you can find here called
| Trojan.JS.YouAreAnIdiot [1]
|
| The beauty of this one was how easy it was to customize and
| send to someone. The sheer terror people would go through
| thinking it was a targeted attack when the popup, bouncing
| everywhere flashing at them calling them an idiot, has their
| name and stuff in the javascript alert that came up... it was
| just incredibly funny, especially if you just set it as
| something that opened from putting it in their 'startup' menu
| with a couple of minutes at their computer
|
| [1] https://www.youtube.com/watch?v=LSgk7ctw1HY
| [deleted]
| rockbruno wrote:
| I remember one of these troll websites was one that displayed a
| picture of some James Bond like character. The entire window
| would then become "wavy", moving around the screen while it
| animates the waves, with of course the close buttons being
| totally unresponsive.
|
| I wonder now how did those things work. I guess back in time
| browsers allowed you to do whatever you wanted with zero
| consequences?
| gruez wrote:
| By "wavy", do you mean something like this?
| https://i.stack.imgur.com/4Jh7t.jpg
|
| AFAIK it's to do with how compositing was done in windows.
| Every app drew to the same surface. If it couldn't redraw
| because it was frozen or whatever, then you'd see the
| remnants of what was previously drawn, hence the pattern.
| 0xbadcafebee wrote:
| I had the same experience; "trick" websites like that got me so
| excited to find out what was possible. It's still kind of
| amazing that browsers let websites do all the things they do,
| considering the potential for abuse
| dylan604 wrote:
| Some actually see the constant flow of alerts, and ask if you
| want to supress alerts for that site. So, depending on how
| quickly you interact with that site, the browser might save
| you.
| [deleted]
| [deleted]
| kingcharles wrote:
| I wouldn't be so quick to think this isn't also illegal in the
| USA. For instance, it is illegal in Illinois to:
|
| Sec. 17-50. Computer fraud. (a) A person
| commits computer fraud when he or she knowingly:
| (1) Accesses or causes to be accessed a computer or any part
| thereof, or a program or data, with the intent of devising or
| executing any scheme or artifice to defraud, or as part of a
| deception;
|
| It could be argued that linking someone to the pop-up, making
| them think the site they were going to was normal, and then
| getting hit with an uncloseable pop-up was "a deception".
| cute_boi wrote:
| > Japanese authorities sentenced a 24-year-old man to one year in
| prison, suspended for three years, despite the man making only
| $45 from his exploits.
|
| > Japanese police have brought in, questioned, and charged a
| 13-year-old female student from the city of Kariya for sharing
| browser exploit code online.
|
| >Japanese police also arrested a 17-year-old boy in February 2018
| for creating malware that stole the passwords of cryptocurrency
| wallets, and another 14-year-old in June 2017, for creating
| ransomware, and later sharing the code online, despite the teen
| never using the ransomware in any attacks, and later admitting to
| having created it as a curiosity.
|
| Insane huh! This will not solve the problem, but will just
| increase police hostility. No wonder, why people disdain them.
| ______-_-______ wrote:
| This guy must be the most dangerous criminal alive:
| https://github.com/aaronryank/fork-bomb
| belter wrote:
| One word for you: 42.zip
| btilly wrote:
| I came up with a nastier fork bomb about 20 years ago. This
| also tries to eat your memory. It at least used to reliably
| hose any *nix system I tried it on, even ones where people had
| tried to put various process limits in place.
|
| #!/bin/sh
|
| perl -e 'push @big, 1 while 1' &; $0 &; $0
| stjohnswarts wrote:
| I wrote a c program that would slowly eat up memory over the
| course of about 15 minutes and use it to anger fellow college
| students progressively as the machine became slowly less and
| less reactive (rather than all at once with fork bombs and
| such) of course it would back off after a couple minute and
| start doing it again. After a couple of hours it would exit
| waiting for the next reboot. I'm glad I'm a lot more mature
| these days, and my pranks are less about enraging people in
| student labs. It's my understanding that most of these
| machine have programs that constantly sweep and delete such
| things in modern college labs, so that is a good change.
| Fortunately I grew weary of it after a week or two and
| deleted it off the few machines I put it on.
| WithinReason wrote:
| I had to try the batch file fork bomb, this is the whole thing:
| %0|%0
|
| Now my computer is just smoke and rubble.
| skrebbel wrote:
| Strictly put that's a CreateProcess bomb though
| zxcvbn4038 wrote:
| Kudos to the Japanese girl, I did the same thing once, wrote a
| three line BASIC program that printed "Your computer has a virus"
| repeatedly and the school admin panicked and shut down the
| computer lab for a week, giving us all extra time to write our
| papers. I didn't expect that but I gladly accepted the extra
| time.
|
| My best prank though was I had this one math teacher with short
| temper and a really nasty attitude, but almost no computer
| literacy. So one day I stopped by his computer and turned the
| bright setting on his monitor all the way down. The next day the
| school admin came by and tried to fix the computer and failed. A
| week later someone from the DOE came by and tried to fix the
| computer and failed. A week after that they put the monitor in a
| box and shipped it to IBM. About six weeks later the monitor came
| back from IBM, they unpacked it, made sure the computer booted to
| the DOS prompt, then walked away. On the way out of class I
| stopped by the computer, turned the bright setting all the way
| back down, and the whole cycle began again. Mr. McNasty had to
| manage things on paper that semester.
| remram wrote:
| From March 2019.
| ffhhj wrote:
| Did they release the girl?
| justinzollars wrote:
| nope they kept her
| joombaga wrote:
| Warning: Don't click this if you don't understand what it's
| doing. You may have trouble closing it.
|
| GH pages link: https://hamukazu.github.io/lets-get-arrested/
| timwis wrote:
| Ahhh I accidentally zoomed on the page on mobile, so double
| tapped to unzoom and hit this. Proceeded to infinite loop
| Firefox on iOS. Oh well, time for a new phone anyway.
| speedgoose wrote:
| If you want to use Firefox you should get an Android
| smartphone. Apple forbids other browsers engines on iOS.
| MikePlacid wrote:
| Lolwhat?? https://apps.apple.com/us/app/firefox-private-
| safe-browser/i...
| speedgoose wrote:
| It's safari with a wig.
| stjohnswarts wrote:
| Sorry but the adblocking, night-mode, and sync make it a
| lot better for me than safari, so it's not just "safari
| with a wig" which would imply only the interface looked a
| bit different but otherwise it worked the same, which is
| not the case.
| cma wrote:
| It's like if Microsoft had decreed in the 2000s that
| Mozilla can only make their browser as an IE6 toolbar,
| with IE6 still rendering the pages and enforcing weird
| rules.
| addaon wrote:
| Firefox on iOS uses the Webkit rendering engine, not the
| Gecko rendering engine it uses on other platforms.
| spijdar wrote:
| Firefox on iOS uses WebKit for showing web content, it
| doesn't use Gecko or any other components you'd think of
| as "Firefox".
|
| It does have some Mozilla added plugins and syncs with
| Firefox logins, but the meat of the application isn't
| really "Firefox".
| MauranKilom wrote:
| "browser engine" != "browser app"
| thereddaikon wrote:
| And its really just Safari. Apple forbids other browser
| engines in iOS so every third party browser in the app
| store is effectively a safari skin and not at all related
| to the product's true codebase. Real Firefox uses the
| Gecko browser engine. iOS Firefox is webkit.
|
| To quote Apple's iOS dev guidelines:
|
| "2.5.6 Apps that browse the web must use the appropriate
| WebKit framework and WebKit Javascript."
|
| https://developer.apple.com/app-store/review/guidelines/
| jonfw wrote:
| Most users don't care about the engine, they care about
| things like where your bookmarks are synched and
| configured, and the UI.
|
| This is like telling people that a lexus isn't a real
| luxury car, it's just a re-skinned toyota. Most people
| don't care- they just want materials, tech, and nice
| seats. The skin is the car
| suby wrote:
| The engine is a method for apple to maintain control over
| the entire ecosystem. Is a web standard developing which
| could threaten native ios apps? By maintaining control of
| the engine they can prevent the standard from threatening
| them.
|
| Users dont care about the engine until they cant use some
| web based thing because apple has decided so.
| mywittyname wrote:
| In this case, it's more like telling people that a
| particular Toyota was built by BMW.
|
| It might not seem relevant on the surface, but the
| underlying technical differences could pose an issue for
| certain user cases, thus it's an important consideration.
| Not all Firefox addons work with the iOS version just
| like not every Toyota dealership carries parts for a
| Zupr4.
| thereddaikon wrote:
| That's a debatable point but the result either way
| doesn't change the point of my comment. They were
| dismissing the parent comment because they didn't
| understand the true nature of what they were talking
| about.
| stjohnswarts wrote:
| Sure but in my experience the sync, night mode, and ad
| blocking are a lot better in firefox, although it is
| definitely a bit slower because of javascript.
| andai wrote:
| Interesting, on iOS Safari you can just close the page.
| culi wrote:
| What do you mean by this? I mainly use FireFox on my
| iPhone. Are you saying the FireFox app utilizes WebKit?
| shawabawa3 wrote:
| Firefox on iPhone is a wrapper around Safari.
| efraim wrote:
| Webkit is not safari. It doesn't use the same ui or
| bookmarks for example.
| smoldesu wrote:
| It is, in fact, Safari. As another commentor noted, it's
| an instance of Safari Webview, not just webkit. The only
| thing you control when developing third-party apps is the
| UI/UX.
| marcellus23 wrote:
| > an instance of Safari Webview,
|
| there is no "Safari Webview" -- GP is being pedantic but
| he is right here. WKWebView is not Safari, anymore than
| Chrome was Safari before it forked off into Blink. WebKit
| != Safari
| Toadtoad wrote:
| Yup. "2.5.6 Apps that browse the web must use the
| appropriate WebKit framework and WebKit Javascript."[0]
|
| [0] https://developer.apple.com/app-
| store/review/guidelines/#sof...
| olex wrote:
| Not just Webkit - it's a Safari WebView in disguise
| (pretty decent disguise though, I use it daily myself).
| Apple doesn't allow any other type of browser on iOS.
| seaish wrote:
| Firefox (and all browsers on iOS) is just a wrapper
| around the Safari engine, because of Apple rules. On
| Android and desktop (including MacOS) it's fully custom.
| stjohnswarts wrote:
| Firefox on ios is pretty handicapped vs on Android. Like
| most things it's a tradeoff. Also the javascript engine
| isn't nearly as fast as the one for Safari on ios. That
| said I still use firefox there because i sync everything
| on firefox, also because of the built in night mode which
| is close enough to darkreader for my usage.
| stjohnswarts wrote:
| I doubt most people want to switch phone ecosystems over a
| browser. I love firefox and use it everywhere (linux,
| windows, freebsd, etc) including macos, but iphone overall
| is a better experience for me as a mobile OS so I stick
| with that.
| timwis wrote:
| Thanks but apparently you can close the tab in iOS Safari
| so it's a Firefox issue.
| marcellus23 wrote:
| > If you want to use Firefox you should get an Android
| smartphone. Apple forbids other browsers engines on iOS.
|
| How does the first sentence follow from the second? For
| almost all users, the engine is irrelevant, it's the chrome
| that matters.
| ziml77 wrote:
| Or just have Firefox which gives you the option to disable
| alerts if one comes up quickly after you already acknowledged
| another.
|
| Alternatively, open up the browser console and type `alert =
| undefined`
| grimgrin wrote:
| if you open this on mobile and need to get that alert/popup
| closed, go to another app and click a link to take focus back
| in your mobile browser, then you can locate the Bad Tab and
| nuke it
|
| or at least that's what i managed on ios w/ firefox
| rnestler wrote:
| Firefox on Android asks after the second alert if I want to
| prevent the page from opening further dialogs which I can
| select to silence it.
| jtbayly wrote:
| iOS Safari I simply clicked the tab icon and closed it.
| rosndo wrote:
| You can just tap the arrow to navigate back, alerts don't
| block browser UI.
| ars wrote:
| I wrote one of these where it moves the popup window all over
| the screen, and rapidly opened and closed the popup (not an
| alert), making it impossible to click.
|
| I was unable to stop my own creation and had to ctrl-alt-del
| kill the browser - except that when I started the browser
| again, it went back to the last opened window.
|
| It took a bit of work regaining control. I wish I had saved the
| code, although it wouldn't work today since browsers restrict
| window open/close these days.
| ffhhj wrote:
| Really cool! In my young days I had fun with js alerts in
| certain forums. It's incredible modern browsers still suffer
| these problems. I have managed to freeze my computer with
| resource intensive js scripts that required a forced power
| off, but I never save the code of these bugs. With the latest
| Ubuntu my machine used to freeze when opening Gmail in
| Firefox, I started suspecting some kind of sabotage on
| Firefox, but never managed to find the actual cause.
| fasteo wrote:
| I tried to search for the actual law she broke to no avail
|
| Any pointer ?
| PaulHoule wrote:
| Reminds me of this hilarious account from somebody who made a
| MySpace worm in the day
|
| https://samy.pl/myspace/
| herrvogel- wrote:
| There is a good darknet diaries episode with some more details
| about him.
|
| https://darknetdiaries.com/episode/61/
| aykae_ wrote:
| Here's a video of Samy recounting the same event:
| https://youtu.be/DtnuaHl378M
|
| Personally not sure if I'd take an internet ban over jail time
| if I had his passion+acumen for cybersec...
| axiosgunnar wrote:
| Let me play the devils advocate here:
|
| Why does it matter that what she did was a "simple" hack that
| didn't require exploiting fifteen CVEs at once?
|
| It's akin to pulling away the seat of a teacher who wants to sit
| down.
|
| Everybody is technically capable of pulling the seat away, it
| does not require any special skills.
|
| You still get in trouble if you do it.
| judge2020 wrote:
| > In the investigation of the criminal act, the police examined
| user logs of the bulletin board and found others also suspected
| of linking it. In response, they raided the house of an
| unemployed man and that of a 47-year-old construction worker.
| None of the three individuals appear to be accused of actually
| having written the infinite loop. Explaining her actions, the
| girl said that she'd run into such pranks herself and thought
| it would be funny if someone clicked the link.
|
| [0]
|
| No fun allowed I guess.
|
| 0: https://arstechnica.com/tech-policy/2019/03/japanese-
| police-...
| maerF0x0 wrote:
| > It's akin to pulling away the seat of a teacher who wants to
| sit down.
|
| You dont usually go to jail for something that is immediately
| recoverable. (albeit embarrassing) .
|
| Detention might be in order though. Maybe we need a computer
| hacker equivalent of the drunk tank
| https://en.wikipedia.org/wiki/Drunk_tank
|
| As a completely aside rant, we should levee a fee to alcohol
| companies to fund these drunk tanks, it makes no sense for that
| to be taxpayer/police budget funded.
| dylan604 wrote:
| Or why not just have the occupant of said drunk tank fund it
| by paying a fine? Oh wait, they do that already by having
| arrested you and now commiting a portion of your future life
| dealing with the courts and the fines they levy.
| maerF0x0 wrote:
| i see, i guess it's locale dependent then. Where I'm from
| the drunk tank is mostly a catch and release program where
| people spend the night so they're not a danger to others,
| but really aren't worth prosecuting.
|
| What you said might work where you are though.
| dylan604 wrote:
| Yeah, if the police detain you to a drunk tank, you've
| been arrested. If they just think you're being a nuisance
| for being intoxicated, they issue a 'public intox'
| ticket. Either way, courts and fines are in your future.
| Interactions with police rarely ends with out some sort
| of dip into your wallet.
|
| Fun fact, if you are arrested while in possession of any
| kind of narcotics, most departments will place you in the
| drunk tank as well until you are arraigned.
| josephcsible wrote:
| > It's akin to pulling away the seat of a teacher who wants to
| sit down.
|
| You're right, it is. You don't get arrested for pulling away
| the seat of a teacher who wants to sit down. You might get
| detention, but if that's the only bad thing you've ever done,
| you'll probably get let off with a warning.
| dylan604 wrote:
| Not in today's zero tolerance world. This would probably be
| construed as assault on the teacher.
| citizenWithCriminalRecord++
| rahimiali wrote:
| I don't think you get arrested for pulling a chair?
| dylan604 wrote:
| Or beating someone with it if you're watching WWE
| vimacs2 wrote:
| The devil doesn't require an advocate.
| borski wrote:
| Everyone has the right to an attorney. ;)
| duxup wrote:
| I assume this is all about this:
|
| https://arstechnica.com/tech-policy/2019/03/japanese-police-...
| anamexis wrote:
| Yes, it says so right at the top of the readme.
| [deleted]
| franciscop wrote:
| I live in Japan and I've read enough horror stories between the
| police and foreigners that I'd just like to say, don't mess with
| police here. They are very nice and polite, until they are not.
| They have been under heat multiple times for apparent human
| rights violations, which include indefinitely detaining people
| until they confess of the accused crime.
|
| Another beautiful quirk of Japanese law is that you can be held
| liable for crimes even if you have absolutely nothing to do with
| them, just by virtue of being family of the person who committed
| them, like in train suicide [1] or having some (even fairly
| removed) family member who was in the Yakuza
|
| [1] https://www.irishtimes.com/news/health/families-fined-for-
| su...
| cute_boi wrote:
| It's not just Japan, but many part of the world.
| stjohnswarts wrote:
| I mean humans are humans and I think wanting to be a police
| office attracts a certain type of person where the per capita
| of "nice" goes way down vs the general population.
| sprayk wrote:
| The first place most foreigners will get a taste of that (or at
| least where I got a taste) is the policeman with a very long
| stick standing on a small, raised platform in the train station
| below the Narita International Airport.
| jdeibele wrote:
| I'd never heard of this and spent a few minutes searching. I
| was expecting something like a 10-foot stick but it's more
| like 4-feet. (paywall but I used Safari's reader mode) https:
| //www.japantimes.co.jp/news/2015/03/20/reference/polic...
| sprayk wrote:
| Yea I guess it's big relative to the batons I see police in
| the US and Europe carrying, but not absurdly big. It was
| large enough that it looked like it would be awkward to use
| with any amount of precision.
|
| EDIT: read the article in chrome's reader mode, thanks for
| the tip!
| dymk wrote:
| https://archive.is/kkg0N
| outworlder wrote:
| I don't know about police, but the most unpleasant experience
| I've ever had at any immigration was in Japan.
|
| They were NOT polite. Even if they found nothing wrong.
|
| US immigration is a day at the spa in comparison. Even when the
| consulate messed up my fingerprints. Cleared up in under two
| hours, they were cold but polite the entire time - not angry
| and disrespectful.
|
| After I was finally allowed in Japan, 4 hours after I had
| arrived - thanks to my uncle, a Japanese citizen - everything
| went fine. Nice people, spent three months there.
|
| I'd like to visit again, but I'm dreading the immigration
| experience.
| iso1631 wrote:
| I've only been to Japan once, but immigration for me (a white
| male Brit) was no different to Korea, Hong Kong, Singapore
| etc, just a smile and a stamp.
|
| Israel is the only real place I've had more than a "purpose
| of visit" (although getting in is still far easier than
| getting out).
|
| I went to the states last week to see some colleagues for the
| first time since 2019 - had to really bit me tongue not to
| say "Christmas Parties" instead of "Business Meetings", got
| prodded for a little more info from JFK immigration (a "Law
| Enforcement professional" from the "Washington DC area" also
| checked my profile on linked in after I applied for my ESTA)
| m00dy wrote:
| Browsers should be taking care of continuous alert() calls.
| ars wrote:
| They do - there's a checkbox "Prevent this page from creating
| additional dialogs".
| themanmaran wrote:
| I was surprised to see it still gets hung up on Chrome.
|
| I frequently see the "Prevent this page from creating
| additional dialogs?" option in Chrome. Not sure why it doesn't
| happen here.
| Beltalowda wrote:
| Usually you get this after two or three alerts, not the first
| one.
| Osiris wrote:
| They do. When I open it I get the option to not show alerts
| from this page again.
| Nextgrid wrote:
| They do - modern browsers make "alert()" be a part of the
| page's content instead of browser UI - you can still interact
| with the browser's UI to close or switch away the tab.
|
| Maybe this entire incident was raised by an idiot opening it in
| a truly ancient browser?
| [deleted]
| [deleted]
| duped wrote:
| Applications generally shouldn't have APIs that run foreign
| code that can freeze the app/page.
___________________________________________________________________
(page generated 2022-02-14 23:01 UTC)