lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
From: exibar at thelair.com (Exibar)
Subject: NASA.GOV SQL Injections

I had the pleasure of meeting one of NASA's IT guys this week actually.  He
could certainly be considered "the cream of the crop".  If all NASA IT guys
are like him, then NASA certainly has the "best of the best" employed there.
I would also say that yes, even the janitor requires a full background check
and security clearance, to some degree.  I'm sure that there are areas where
even the 1% have to clean up after themselves every day due to the
sensitivity of their work.

  Why would anyone think that NASA wouldn't hire the best of the best, even
for administrative work?  It's not like they're raking leaves for a living,
they send people to the Moon and beyond :-)

  Exibar

----- Original Message ----- 
From: "Jonathan A. Zdziarski" <jonathan@...learelephant.com>
To: "Schmehl, Paul L" <pauls@...allas.edu>
Cc: "full-disclosure" <full-disclosure@...ts.netsys.com>
Sent: Friday, October 17, 2003 12:28 PM
Subject: RE: [Full-Disclosure] NASA.GOV SQL Injections


> > No offense meant to the fine IT people at NASA, but do you seriously
> > believe that the one-percenters are securing the network?  As opposed to
> > say, figuring out how to land a rover on Mars, how to keep astronauts
> > alive in space, how to overcome the long-term negative effects of zero
> > gravity, etc., etc.???
>
> Maybe I'm not as familiar with NASA as others might be, but I would
> think NASA would try and hire the most gifted IT people they could find
> (e.g. the cream of the crop).  Since I've never run into one, I can't
> prove this theory - I suppose it's possible they're all morons...but if
> I had the resources NASA has, there wouldn't be any idiots working for
> me.
>
> I wonder if their janitors require security clearance just to work
> there...if that's the case their IT people are most likely l33t.
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html


Powered by blists - more mailing lists