lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
From: measl at (J.A. Terranson)
Subject: Slightly off-topic:

On Fri, 29 Oct 2004, Todd Towles wrote:

> I read a article about how the site got hacked into...recently. Did
> anyone else read this? If it was hacked then because this is a reaction
> security measure and not a "we want to keep all non-amercians from
> seeing our stuff".

Assuming this all to be true, and assuming for the sake of argument that
the refusal to serve pages to non-US requestors is their "security
measure" in response, it merely deminstrates that their admin staff is as
clueless as a newborn baby at a stripclub.

They're not even using a firewall or ACL to keep the "foreign" visitors
out (since they are getting a web server based error message).  Thank god
that George's webmaster isn't likely to be running anything nu-kul-ar if
George is reappointed!


J.A. Terranson

	"An ill wind is stalking
	while evil stars whir
	and all the gold apples
	go bad to the core"

	S. Plath, Temper of Time

Powered by blists - more mailing lists