Laughably terrible security practices

Share any hilarious IRC quotes, pictures, jokes, and more here!
Forum rules
- NO nudity/pornography. NO racism. NO offensive material.
- Posting these may result in warnings and/or possible ban!
- Please abide by the rules: viewtopic.php?f=126&t=4355

Re: Laughably terrible security practices

Post by not_essence2 on Wed Nov 21, 2012 5:57 pm
([msg=71190]see Re: Laughably terrible security practices[/msg])

LOL, I'm guessing that he thinks physical distance equates wireless distance in terms of difficulty to reach. Tell him about DNS servers and how they're located around the world.
Or, just proxy yourself at home and screw over the system. Although that might not be the best method, as history states, eh?
not_essence2
Poster
Poster
 
Posts: 189
Joined: Fri Sep 14, 2012 6:09 pm
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by Incursus626 on Wed Nov 21, 2012 9:22 pm
([msg=71201]see Re: Laughably terrible security practices[/msg])

I did a job for this insurance company, a simple system audit and adding a couple new computers to the domain.
They didn't know the passwords to any of their server or domain admin account. Only about 10% of the employees actually knew their email password, and about 50% percent of the employees had a partially completed and horribly outdated list of other persons passwords. Their server was so wide open that it had already been compromised and was a source of those god-awful annoying spam emails. I didn't even know where to start.
This Signature is mine. There are many like it, but this one is mine.
User avatar
Incursus626
New User
New User
 
Posts: 3
Joined: Thu Nov 15, 2012 10:11 pm
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by not_essence2 on Thu Nov 22, 2012 7:43 am
([msg=71213]see Re: Laughably terrible security practices[/msg])

Wow, that's sad.
not_essence2
Poster
Poster
 
Posts: 189
Joined: Fri Sep 14, 2012 6:09 pm
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by mookalovesgloop on Thu Nov 29, 2012 9:13 pm
([msg=71416]see Re: Laughably terrible security practices[/msg])

not_essence2 wrote:LOL, I'm guessing that he thinks physical distance equates wireless distance in terms of difficulty to reach. Tell him about DNS servers and how they're located around the world.
Or, just proxy yourself at home and screw over the system. Although that might not be the best method, as history states, eh?

believe me, i tried to explain as best i could without coming across condescending/like an asshole why this was a GIANT mistake...i was told to perfect my sales pitch to the point that i had perfected my computer knowledge....

your suggestion has ABSOLUTELY crossed my mind, but i won't...mostly cause i'm sure my n00bage will get me busted and besides, they still cut my check...it'd be just my luck that i break something not understanding what i'm doing and cause problems with pay distribution :|

peace and blessings
mooka
Image
gloop!
User avatar
mookalovesgloop
Poster
Poster
 
Posts: 167
Joined: Wed Apr 18, 2012 7:48 pm
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by NoobAnonKS on Mon Dec 31, 2012 4:21 am
([msg=71910]see Re: Laughably terrible security practices[/msg])

At my old high school, we had a Novell network and every student and teacher had their own account with a randomly generated password. One day my account was banned for whatever reason and when my login wouldn't work, I pressed F1 for help. This opened up a windows explorer window, through which I had access to EVERYTHING. Tests, report cards, curriculums, you name it. I didn't do anything malicious though, but rather just used this flaw for internet access. Funny to think what I could have done though, had I been so inclined.
NoobAnonKS
New User
New User
 
Posts: 8
Joined: Mon Dec 31, 2012 3:34 am
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by mookalovesgloop on Mon Dec 31, 2012 1:08 pm
([msg=71914]see Re: Laughably terrible security practices[/msg])

it kills me when schools/companies have all these state of the art security software and firewalls hooked up but then don't do something as simple as disable dev tools or the help panel, lol! :roll:

peace
mooka
Image
gloop!
User avatar
mookalovesgloop
Poster
Poster
 
Posts: 167
Joined: Wed Apr 18, 2012 7:48 pm
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by -Ninjex- on Mon Dec 31, 2012 2:37 pm
([msg=71920]see Re: Laughably terrible security practices[/msg])

Talking about terrible security... The school that I graduated from 2 years ago had crap security.
They restricted acces to different drives and files, but you could still pop open firefox and view the files from the browser without bothering whatever security features they had. Needless to say, a lot of teachers had EOC answer keys in .pdf files. I also had direct access to the sam file. No wonder I graduated early.
If you're not willing to learn, no one can help you. If you're determined to learn, no one can stop you.⠠⠵
The absence of evidence is not evidence of absence.
I can explain it for you, but I can't understand it for you.
User avatar
-Ninjex-
Addict
Addict
 
Posts: 1308
Joined: Sun Sep 02, 2012 8:02 pm
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by NoobAnonKS on Tue Jan 01, 2013 9:36 am
([msg=71929]see Re: Laughably terrible security practices[/msg])

mookalovesgloop wrote:it kills me when schools/companies have all these state of the art security software and firewalls hooked up but then don't do something as simple as disable dev tools or the help panel, lol! :roll:

peace
mooka


I know, right? The best part is that I found that by pure accident. I guess that's why all the old-school hacking tuts advise to practice on your school network.

-- Tue Jan 01, 2013 3:42 pm --

mookalovesgloop wrote:it kills me when schools/companies have all these state of the art security software and firewalls hooked up but then don't do something as simple as disable dev tools or the help panel, lol! :roll:

peace
mooka


I know, right? The best part is that I found that by pure accident. I guess that's why all the old-school hacking tuts advise to practice on your school network.
NoobAnonKS
New User
New User
 
Posts: 8
Joined: Mon Dec 31, 2012 3:34 am
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by -Ninjex- on Tue Jan 01, 2013 1:36 pm
([msg=71934]see Re: Laughably terrible security practices[/msg])

Yeah, and also how they don't turn on some features like UAC. I remember just for giggles, I made a batch file:

Code: Select all
start userpasswords2


Too easy!
If you're not willing to learn, no one can help you. If you're determined to learn, no one can stop you.⠠⠵
The absence of evidence is not evidence of absence.
I can explain it for you, but I can't understand it for you.
User avatar
-Ninjex-
Addict
Addict
 
Posts: 1308
Joined: Sun Sep 02, 2012 8:02 pm
Blog: View Blog (0)


Re: Laughably terrible security practices

Post by replaceits on Sun Jun 02, 2013 7:27 am
([msg=75898]see Re: Laughably terrible security practices[/msg])

A school I used to go to did all of the grading online, the username was their name, and the pass word was thier initials and the last 4 digits of their teacher id number, all of which are on their teacher id which they HAVE to wear on their clothing with everything facing the front -facepalm- luckily I dont think anyone ever caught onto this and abused though
When life gives you lemons, don't make lemonade. Make life take the lemons back! Get mad!
User avatar
replaceits
New User
New User
 
Posts: 6
Joined: Sat May 16, 2009 10:57 am
Blog: View Blog (0)


Previous

Return to LULZ

Who is online

Users browsing this forum: No registered users and 0 guests