Fox News' FTP Password Anyone? 611
An anonymous reader writes "While browsing around the Fox News website, I found that directory indexes are turned on. So, I started following the tree up, until I got to /admin. Eventually, I found my way into /admin/xml_parser/zdnet/, in which, there is a shell script. Seeing as it's a shell script, and I use Linux, I took a peek. Inside, is a username and password to an FTP. So, of course, I tried to login. The result? Epic fail on Fox's part. And seriously, what kind of password is T1me Out. This is just pathetic." It's already been changed of course, but that's still pretty amusing.
Re:Great all we need. (Score:3, Interesting)
Either that, or we need to begin teaching nubile drunken 22-year-olds to hack.
Not really going to harm Fox (Score:5, Interesting)
There seems to be a string of these lately between content aggregators. About a month ago there was that page on MS's site endorsing Linux. Turns out the content was from another site (I think, actually, CNet).
Not to say I'm not totally surprised. In this day when about 50% of someone's site is content from somebody else, it's not surprising there's snafus. I'm just waiting for the day when one of the sites leaves up SSH logins for another.
Re:Wasted chance (Score:3, Interesting)
Re:what's wrong with T1me Out (Score:1, Interesting)
Yeah, no kidding. At one of my previous employers (double checking that I have ticked "Post anonymously"....check), which we might call "Chinese national insurance" (I am not Chinese, nor have I ever worked at a insurance company), Linux root or Windows admin password for all computers were either "Chinese" or "national insurance". When asking the senior sysadmin if that was a good idea, he said "we have a lot of firewalls, so it's fine".
Re:I'm no lawyer, but... (Score:2, Interesting)
Employee information leaked (Score:2, Interesting)
Ditto on all accounts (Score:4, Interesting)
Re:what's wrong with T1me Out (Score:3, Interesting)
Wimp. Real men use
dd if=/dev/random bs=1024 count=1 | passwd --stdin
Re:Wasted chance (Score:1, Interesting)
So the president surrounds himself with people who only tell him what he wants to hear, then you excuse his mistakes because he was surrounded by people who only told him what he wanted to hear? Here is a suggestion, maybe the president should take responsibility for surrounding himself with people who tell him the truth. Maybe people who tell something he doesn't want to hear shouldn't have been gagged, ignored etc. You reckon he didn't notice when every shred of evidence they presented to the UN was shredded within days that maybe, just maybe, they had it wrong?
Re:Wasted chance (Score:2, Interesting)
Re:Wasted chance (Score:3, Interesting)
Disney's website Security (Score:3, Interesting)
- Email the admins (with password), requesting an upload opportunity giving detail of content and approval reference
- Admins create FTP account on a purpose-built server
- Admins send back time-sensitive FTP details
- Design company uploads to FTP server
- Committees review content, send authorization to admins
- Admins upload content.
And this was for already-approved work. Kinda puts this level of security to shame...
Speaking of "rewriting history"... (Score:1, Interesting)
And, contrary to popular myth, the evidence still supports the notion that Saddam was seeking uranium in Niger... Joe Wilson's own report said that the former Nigerian PM interpreted Iraqi overtures to "expand business relations" as a desire to purchase uranium, and the British intelligence still stands by their own independent determination to that effect--indeed, their government investigated it after the whole Wilson debacle and concluded that the claims were "well founded". In other words, simply claiming that it was "a lie", like some uber-partisan cartoon, doesn't win you any points here.
The real question about the uranium is this: Why would Iraq be looking for uranium from Niger when we found 500 tons of yellowcake [signonsandiego.com] that they already had laying around?
Re:Wasted chance (Score:3, Interesting)
Yeah, I'm not sure either but I have a similar memory. I mean the point that proves they were wrong the most is simply that nothing has been found in Iraq. I definitely wasn't trying to say that they were right... only that several of the world's intelligence agencies believed the same thing.
Re:Wasted chance (Score:2, Interesting)
1. There are the double talking scheming lying bastards who run the current US administration, and those who support them
2. There are the voices of reason and logic
3. There are the confused masses in between
Finally, there is a rather uncomfortable addition for those in category #1, namely, the facts. The facts as the were and the facts as they are. None of them supporting anything camp 1 proclaims largely because they spend most of the time touting their "alternate interpretation of reality" theory.
This is the worst bunch of cronies to land in government in my life time. And I lived through Contra Gate and S&L. And really this is the same group as they were all tied to the two aforementioned scandals as well. These guys should be arrested, tried and exiled.
Kind Regards
Re:Wasted chance (Score:3, Interesting)
I wish that I could disagree with you on other fronts...but I think we were set up, and not by the Iraqis. The evidence seems to point to a plot internal to the government. (Look at how quickly the PATRIOT bill was presented and passed. Notice where the anthrax came from, and who the targets were...and contemplate that the ineptitude in it's delivery may have been intentional. That may have been a public warning. Notice that the target has since died. [Damn...my memory's spotty here. I haven't been paying attention because there wasn't anything I could do and it just depresses me. What was his name? Did he die of "natural causes" or an airplane crash?])
Re:Wasted chance (Score:2, Interesting)
Re:Wasted chance (Score:5, Interesting)
Has anyone looked at the development of Dubai over the past 10 years? or the wealth of the royal family in Saudi Arabia? Money is flowing to someone from somewhere over there that is for sure.
Now I'm not saying that Saudi's or UAE citizens are evil by default, simply that there has been absolutely 0 backlash against these regions while the US uses 9/11 to justify everything else it has been doing everywhere else.
Wheres the puzzled slightly-tilted looks of hwhaaa?
Re:Wasted chance (Score:3, Interesting)
Because that was our only legal basis for the war and it goes back to the Iraqi invasion of Kuwait. That invasion gave us a legal basis to invade in 1991 and the terms of the surrender called for the elimination of WMD. This was a minor provision at the time, but it was enough for us to use as an excuse to go in this time. This is all very important for people to consider because we won't have this excuse if we invade Iran. A violation of the Nuclear Non-Proliferation Treaty is not a valid basis for war. There will have to be a 'pretext' for Iran, let's hope they don't find one.
Re:Wasted chance (Score:2, Interesting)
With Gore, 9/11 wouldn't have happened, because Gore would have read his Presidential Daily Briefings, and wouldn't have ignored Richard Clark for 9 months while he was jumping up and down about Al Qaeda.
Re:North Korea (Score:3, Interesting)
I don't click on stories about network security to read peoples daily kos blog.