Full Disclosure: Re: jaillords.com hacked, login/password/email list

Re: jaillords.com hacked, login/password/email list

From: Paul Schmehl <pschmehl_lists () tx rr com>
Date: Tue, 08 Feb 2011 09:46:29 -0600

--On February 7, 2011 11:58:50 PM +0000 Bob Smith 
<bobbyhadababyitsaboy () googlemail com> wrote:

Weak passwords, no brute force protection,  lots of sql injections,
was easy to take full control of site

Heres the password files
[snipped]
admins fix ur shit or we will be back


Do you seriously believe that admins for a site like this would be reading 
FD?

-- 
Paul Schmehl, Senior Infosec Analyst
As if it wasn't already obvious, my opinions
are my own and not those of my employer.
*******************************************
"It is as useless to argue with those who have
renounced the use of reason as to administer
medication to the dead." Thomas Jefferson
"There are some ideas so wrong that only a very
intelligent person could believe in them." George Orwell

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

jaillords.com hacked, login/password/email list Bob Smith (Feb 07)
- Re: jaillords.com hacked, login/password/email list Cal Leeming [Simplicity Media Ltd] (Feb 08)
- Re: jaillords.com hacked, login/password/email list A Z (Feb 08)
- Re: jaillords.com hacked, login/password/email list Paul Schmehl (Feb 08)
  - Re: jaillords.com hacked, login/password/email list Hack Talk (Feb 08)
  - Re: jaillords.com hacked, login/password/email list ghost (Feb 08)