 |
|
|
|
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Mike Raiford <mra### [at] hotmail com> wrote:
> ... that someone pulled a power cord for only $10, or that the "Super
> hacker" is a fraud ...
> http://thedailywtf.com/Articles/The-Super-Hacker.aspx
What bothers me about that story is that it's not at all clear whether
the "super hacker" was indeed a competent security analyst or just some
opportunistic fraudster.
In theory it could be either way: Sometimes hacking into a "secure"
system is easier than people realize, and this experienced security
analyst demonstrated in practice how it happens. Or maybe he was just
an incompetent opportunist who got lucky.
--
- Warp
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
On Wed, 30 Apr 2008 13:44:27 -0500, Mike Raiford wrote:
> Orchid XP v8 wrote:
>>
>> Apparently in a recent experiment, 80% of office workers were
>> successfully bribed into handing over their password in exchange for a
>> free pen. [Yes, a cheap 20p pen that you could buy in a shop for 20p.]
>>
>>
> Somebody offering me a free pen in exchange for a password is likely to
> hear the words "Go to hell"
>
> But, that's just me. :)
That only works so long as they don't have one of these:
http://www.goohf.com/
:-)
Jim
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Gail Shaw wrote:
> I managed to gather 35% of the passwords with a dictionary hack, including
> that of the chief geologist, and another 10% by wandering through the
> offices upstairs, including that of the manager of the division.
Many (15+) years ago, I was shown how Kerberos makes this impossible to
prevent, apparently because the first step of the protocol is to send to
the server the client's "username" part, and the second step is the
server answering with the encrypted password. The guy demonstrating
this had apparently cracked something like 40% of the passwords at the
university.
I wonder if that's been improved...
--
Darren New / San Diego, CA, USA (PST)
"That's pretty. Where's that?"
"It's the Age of Channelwood."
"We should go there on vacation some time."
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Warp wrote:
> an incompetent opportunist who got lucky.
Personally, I can't imagine anyone who actually works there actually
pulling the plug on a server for $10. The janitor, maybe, but who would
go unplug a computer in a server room of the company you work for??
"Yeah, and I'll give you $20 if you let the air out of all the tires on
the car with the license tag ABC123!"
--
Darren New / San Diego, CA, USA (PST)
"That's pretty. Where's that?"
"It's the Age of Channelwood."
"We should go there on vacation some time."
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
On Wed, 30 Apr 2008 18:11:31 -0700, Darren New wrote:
> "Yeah, and I'll give you $20 if you let the air out of all the tires on
> the car with the license tag ABC123!"
IT WAS YOU! ;-)
Jim
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Jim Henderson wrote:
> On Wed, 30 Apr 2008 18:11:31 -0700, Darren New wrote:
>
>> "Yeah, and I'll give you $20 if you let the air out of all the tires on
>> the car with the license tag ABC123!"
>
> IT WAS YOU! ;-)
Or, as we used to say in college, "Ha ha, you're out of spare tires! You
lose!"
It was never useful to let the air out of only one tire.
--
Darren New / San Diego, CA, USA (PST)
"That's pretty. Where's that?"
"It's the Age of Channelwood."
"We should go there on vacation some time."
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
On Wed, 30 Apr 2008 19:57:32 -0700, Darren New wrote:
> Jim Henderson wrote:
>> On Wed, 30 Apr 2008 18:11:31 -0700, Darren New wrote:
>>
>>> "Yeah, and I'll give you $20 if you let the air out of all the tires
>>> on the car with the license tag ABC123!"
>>
>> IT WAS YOU! ;-)
>
> Or, as we used to say in college, "Ha ha, you're out of spare tires! You
> lose!"
>
> It was never useful to let the air out of only one tire.
LOL, now that's funny. :-)
Jim
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
Darren New <dne### [at] sanrrcom> wrote:
> Personally, I can't imagine anyone who actually works there actually
> pulling the plug on a server for $10. The janitor, maybe
First you say you can't imagine anyone, and then you give a plausible
someone.
--
- Warp
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
On Wed, 30 Apr 2008 13:44:27 -0500, Mike Raiford <mra### [at] hotmailcom> wrote:
>Somebody offering me a free pen in exchange for a password is likely to
>hear the words "Go to hell"
What if it's a space pen that writes upside down? :-P
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
| |
|
|
And lo on Thu, 01 May 2008 02:11:31 +0100, Darren New <dne### [at] sanrrcom>
did spake, saying:
> Warp wrote:
>> an incompetent opportunist who got lucky.
>
> Personally, I can't imagine anyone who actually works there actually
> pulling the plug on a server for $10. The janitor, maybe, but who would
> go unplug a computer in a server room of the company you work for??
>
> "Yeah, and I'll give you $20 if you let the air out of all the tires on
> the car with the license tag ABC123!"
"Yeah hi can you help me? I'm trying to monitor network flow and as one of
the tests I need to simulate a small power outage. Trouble is I need to be
at my desk when the power goes off. So could you do me a favour wait for
five minutes and just switch this socket off for me? Don't worry about
turning it back on I'll be back after I've done my tests and as, you know,
you shouldn't have to do this here's $10 for your trouble"
Hands-up those who think that'd work with a layperson.
Hands-up those who think that'd work without the $10 inducement
Hands-up those who think that'd work without the $10 inducement and done
over the telephone :-)
--
Phil Cook
--
I once tried to be apathetic, but I just couldn't be bothered
http://flipc.blogspot.com
Post a reply to this message
|
|
| |
| |
|
|
|
|
| |
