Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: jaillords.com hacked, login/password/email list
From: Paul Schmehl <pschmehl_lists () tx rr com>
Date: Tue, 08 Feb 2011 09:46:29 -0600

--On February 7, 2011 11:58:50 PM +0000 Bob Smith 
<bobbyhadababyitsaboy () googlemail com> wrote:

Weak passwords, no brute force protection,  lots of sql injections,
was easy to take full control of site

Heres the password files
[snipped]
admins fix ur shit or we will be back


Do you seriously believe that admins for a site like this would be reading 
FD?

-- 
Paul Schmehl, Senior Infosec Analyst
As if it wasn't already obvious, my opinions
are my own and not those of my employer.
*******************************************
"It is as useless to argue with those who have
renounced the use of reason as to administer
medication to the dead." Thomas Jefferson
"There are some ideas so wrong that only a very
intelligent person could believe in them." George Orwell

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]