Help a Hacker - Tell him whats wrong with the security....
-
-
Well this might not be the right place, but just letting some steam out here...
I have just been using some hours helping out a customer who got hacked due to the recent security flaw in Joomla. It was not that hard to get it back to normal, but highly boring to be honest.
I am sure a good hacker knows how to get into Joomla, but why on earth do the developers of Joomla tell all the script kiddies or whatever they are called where to look for the security flaws?
I mean wouldn't it be enough to say - important security update has just been released, make sure you update right away!
I got all sorts of messages from various Joomla people with messages regarding this and that is wrong, and that makes it possible to take advantage and do this and that in order to take over the super admin password etc. etc..
Oh well I don't get it... ???
-
-
-
- Terp
- Elite Rocketeer
- Posts: 1720
- Thanks: 23
-
...hate it when CNN runs a special on anthrax, where it can be found, the process for making it "weapons-grade," how to get it airborne, et al.
I don't get it, either.
I think in Joomla's case, this is a good policy, no? I would rather they put it out there and let these so-called 'script kiddies' spin their wheel s and try it again. If none get hijacked, well, ergo...sort of uses the script kiddies to test the update.
-
-
-
Yeah you might be right... Perhaps delayed info then
First the update and a couple of days later a description of the problem.
-
-
-
- JEM
- Preeminent Rocketeer
- Posts: 17917
- Thanks: 4
-
Terp wrote:
...hate it when CNN runs a special on anthrax, where it can be found, the process for making it "weapons-grade," how to get it airborne, et al. I don't get it, either.
I think in Joomla's case, this is a good policy, no? I would rather they put it out there and let these so-called 'script kiddies' spin their wheel s and try it again. If none get hijacked, well, ergo...sort of uses the script kiddies to test the update.
Spot on, Terp.
Don't tell 'em how to do it, just tell us to fix it for our own good.
Case in point: After someone committed suicide here in Japan by mixing household chemicals to produce poisonous gas, the 'recipe' was posted on the net. There was a spate of suicides with the same MO, more than 30 in one month. Without this info perhaps some of these people would still be with us.... Others may have found different means, but you get the point.... - Thanks,
jim
-
Time to create page: 0.063 seconds