-
December 23rd, 2009, 06:20 AM
#11
While you are connected and logged on to the server, change your password quickly to something difficult to remember. You only have to type it in twice and never think of it again.
Problem solved.
If you do not agree, then obviously your concern is not protecting to client, or 'doing the right thing' as you want to make a big deal out of the issue, most likely for personal gain.
CTO
"Any intelligent fool can make things bigger and more complex... It takes a touch of genius --- and a lot of courage to move in the opposite direction."
- Albert Einstein
-
December 23rd, 2009, 07:02 AM
#12
I would either alert them to their problem, or simply forget about it.
I work as a network/systems admin, and there are a ton of passwords that would have to be changed if I left. There is also a good deal of trust. If I were to part with my current employer, I would probably just sever all ties, and hope for a good recommendation.
It is not worth it to me. That would make for a big gap on my resume, because of an employer that I could not list. And as MSM pointed out, there is a possibility of charges being brought. Industrial sabotage comes to mind. [I think that is what it is called here in the states...] Not to mention wire-fraud, etc.
I have been ticked at employers too, but sometimes you just have to suck it up.
I guess that is what it really boils down to. Are you just angry with your former employer, or do you care about the integrity of their systems? If the former is true, walk away. If the latter is true, send them a letter/email describing the problem, and your suggestion as to how to fix it.
Hope I didn't come off as sounding offensive. It was not my desire.
Welcome to AO.
Cheers!
westin
\"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"
-HST
-
December 24th, 2009, 01:55 PM
#13
I would either alert them to their problem, or simply forget about it.
If these are your options then it seems you would rather dive into the lime light or do nothing and leave a known vulnerability open, even though chances are you are the only factor that causes this issue to be a vulnerability. Hmmm, when reading my own current version of ethical standards, I don't see this as acceptable - but that is me.
I am sure Westin would agree - I also don't want to cause offence!
Peace - CTO
"Any intelligent fool can make things bigger and more complex... It takes a touch of genius --- and a lot of courage to move in the opposite direction."
- Albert Einstein
-
December 24th, 2009, 04:33 PM
#14
Banned
I've probably hit over a thousand governmental websites around the globe. Let me be the first to say that... nobody gives a **** about your little rinky-dink machine in some under funded department.
-
December 24th, 2009, 05:19 PM
#15
Originally Posted by The-Specialist
I've probably hit over a thousand governmental websites around the globe. Let me be the first to say that... nobody gives a **** about your little rinky-dink machine in some under funded department.
Except maybe the underpayed employees in the underfunded department.
\"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"
-HST
-
December 25th, 2009, 09:29 PM
#16
The specialist should remember his manners?
This account is banned...............so will his other one be
-
December 25th, 2009, 11:20 PM
#17
Yes, you could expose their vulnerability, however, you logged in with your password, and if you logged in from your home computer, they now have your IP address logged. Now you have been identified. I would not tell them about their vulnerability, I would probably let it go and hope that they don't press charges for your unauthorized access.
-
December 26th, 2009, 06:17 AM
#18
Originally Posted by nihil
This account is banned...............so will his other one be
Everyone on this site should be just as guilty. After all Antionline has an out-dated file section and continuously broadcasting 0-day vulnerabilitys daily. Heck a wolf only needs to lurk in the background until someone post a vulnerable site. I bet I can explain that to a jury.
Makes http://milw0rm.com look weak.
Last edited by Linen0ise; December 26th, 2009 at 06:20 AM.
-
December 26th, 2009, 11:37 AM
#19
My dear LO:
I bet I can explain that to a jury.
I will take that bet Sir..................juries and courts tend to know nothing about IT; so your chances of success are around zero?
I am sure that you are aware that we are only allowed one account?...... OK we moderators and admins will create a new one to resolve problems; but that is all.
May I take this opportunity to wish you and yours a Merry Christmas and a prosperous New Year?
I must now go and bake a seed cake for my wife....................
Similar Threads
-
By rpgraff in forum Spyware / Adware
Replies: 16
Last Post: August 24th, 2004, 08:01 AM
-
By agent.idle in forum Other Tutorials Forum
Replies: 0
Last Post: March 12th, 2004, 06:39 PM
-
By M@rin3 Snip3r in forum AntiOnline's General Chit Chat
Replies: 6
Last Post: September 24th, 2003, 03:59 AM
-
By qwerty_smith in forum Other Tutorials Forum
Replies: 7
Last Post: September 23rd, 2002, 06:29 PM
-
By Noble Hamlet in forum AntiOnline's General Chit Chat
Replies: 1100
Last Post: March 17th, 2002, 09:38 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|