| ActiveMac | Anonymous | Create a User | Reviews | News | Forums | Advertise |
|
|
|
User Controls |
|
New User |
|
Login |
|
Edit/View My Profile |
|
|
|
|
|
|
|
ActiveMac |
|
Articles |
|
Forums |
|
Links |
|
News |
|
News Search |
|
Reviews |
|
|
|
|
|
|
|
News Centers |
|
Windows/Microsoft |
|
DVD |
|
ActiveHardware |
|
Xbox |
|
MaINTosh |
|
News Search |
|
|
|
|
|
|
|
ANet Chats |
|
The Lobby |
|
Special Events Room |
|
Developer's Lounge |
|
XBox Chat |
|
|
|
|
|
|
|
FAQ's |
|
Windows 98/98 SE |
|
Windows 2000 |
|
Windows Me |
|
Windows "Whistler" XP |
|
Windows CE |
|
Internet Explorer 6 |
|
Internet Explorer 5 |
|
Xbox |
|
DirectX |
|
DVD's |
|
|
|
|
|
|
|
TopTechTips |
|
Registry Tips |
|
Windows 95/98 |
|
Windows 2000 |
|
Internet Explorer 4 |
|
Internet Explorer 5 |
|
Windows NT Tips |
|
Program Tips |
|
Easter Eggs |
|
Hardware |
|
DVD |
|
|
|
|
|
|
|
Latest Reviews |
|
Applications |
|
Microsoft Windows XP Professional |
|
Norton SystemWorks 2002 |
|
|
|
Hardware |
|
Intel Personal Audio Player 3000 |
|
Microsoft Wireless IntelliMouse Explorer |
|
|
|
|
|
|
|
Site News/Info |
|
About This Site |
|
Affiliates |
|
ANet Forums |
|
Contact Us |
|
Default Home Page |
|
Link To Us |
|
Links |
|
Member Pages |
|
Site Search |
|
Awards |
|
|
|
|
|
|
|
Credits |
 |
On the Microsoft FTP server leak | |
|
||
| Time: 12:35 EST/17:35 GMT | News Source: The Register | Posted By: Robert Stein | ||
|
Microsoft made customer details - along with numerous confidential internal documents - freely available from a deeply insecure FTP server earlier this month. A well as numerous PowerPoint slides, such as Linux Vs Windows comparisons and .NET strategy papers, Microsoft "published" files an estimated 11 million customer email addresses and seven million snail mail address on the server. | ||
|
Write Comment
Return to News |
Displaying 1 through 25 of 313 Last | Next |
The time now is
7:32:39 AM
ET.
Any comment problems? E-mail us |
| #1 By 2062 (68.129.23.98) at 11/23/2002 3:05:38 PM |
|
I hear internal documents were found on the ftp that prove Microsoft's plans to take over the world and make linux illegal with the use of paladum. Once the plan succeeds, bill gates will be president of the new world order, the government in charge of the world.
-gosh |
| #2 By 3653 (65.190.70.73) at 11/23/2002 5:53:22 PM |
|
So, where are all these stolen docs? I want to see them? They sound interesting.
Oh, and sodajerk cant respond. He's a bit tired (had a late night with Mr. Sodajerk). This post was edited by mooresa56 on Saturday, November 23, 2002 at 17:55. |
| #3 By 1845 (12.254.162.111) at 11/23/2002 6:48:45 PM |
| tony, what is difference between accidentally publishing an internal document to a public web site and accidentally publishing to a public FTP server? Other than the protocol (HTTP vs FTP) involved, it seems like the exact same thing. Since we now conclude it is the exact same thing, I guess his argument wasn't weak after all. |
| #4 By 1845 (12.254.162.111) at 11/23/2002 6:50:21 PM |
| Is your implication that when jerk argues with me that he is right, Jagged? |
| #5 By 1845 (12.254.162.111) at 11/23/2002 10:23:57 PM |
|
You are bringing up two very different issues, tony.
In the case of both Sun and Microsoft, an employee posted info to a server without realizing it was an external server. There is no difference here. In the Microsoft case there was, among other things, an Access database with customer info. FYI, it is pretty impossible to secure an access database no matter the password. The password itself wasn't insecure, the database was. Why do I say that? Because the db was hacked using an office crack program which sniffs for passwords. Since it can retrieve passwords, it really doesn't matter what password you use, does it? The other documents involved were also Office documents. Had the been posted to an internal server, there would have been no security issue. What "widespread bad security practices" are you referring to? In both cases, there was a mistake, nothing more. In the case of the customer db, I'd say that should have been in SQL Server, since SQL Server is much more difficult to hack than Access is. Still, I don't see any evidence of "widespread bad security practices". I see a mistake. If you still think I'm blind, why don't you explain the story to me as you understand it, so I can see what you see. Also, if you think there are "widespread bad security practices", then I'd hardly call that "a fairly unimportant 'security' glitch'. If the problem is bad, as you say it is, then it is very important. If it was just a glitch, then you agreed with my previous post - simple mistake, no big deal. In any case, since you were talking to me, saying "you guys" isn't appropriate, because I haven't said much on the matter. In fact, I only posted because you had stated your opinion and I disagreed with it. |
| #6 By 2062 (68.129.23.192) at 11/23/2002 10:42:09 PM |
| This comment has been removed due to a violation of the Active Network Terms of Use. |
| #7 By 1845 (12.254.162.111) at 11/23/2002 10:57:39 PM |
|
A thing called encryption? When was the last time Access databases supported that? As I said, to be more secure they should be stored in SQL Server.
When exactly did I say "well stuff happens" ? Anyway, millions of people can already see my snail mail address. It's called the phone book. Now my credit card number would be a different story. |
| #8 By 2062 (68.129.23.161) at 11/24/2002 5:30:21 AM |
|
Why was my post deleted? I didn't see anything offensive. It seems very obvious to me that some members like sodajerk and bobsmith can attack people and post what they want, but as soon as a regular user posts something intelligent it's deleted. Nice...
-gosh |
| #9 By 135 (208.50.206.187) at 11/24/2002 2:31:54 PM |
| I don't know. What'd you say? |
| #10 By 7650 (128.113.149.97) at 11/24/2002 3:16:46 PM |
| lol, he couldn't say that now, could he, or he'd be violating the terms :). You have to love the irony. |
| #11 By 1845 (12.254.162.111) at 11/24/2002 3:39:29 PM |
|
gosh, sodajerk's posts get deleted all the time, because he uses profanity all the time. If your post had profanity, that was likely why it was deleted. My posts don't get deleted because I never use profanity in my posts.
Sclomp - LOL! This post was edited by BobSmith on Sunday, November 24, 2002 at 15:42. |
| #12 By 135 (208.50.206.187) at 11/24/2002 5:18:25 PM |
|
yeah yeah yeah... Microsoft is evil, everybody else is great.
Look, we've heard it all before. |
| #13 By 1845 (12.254.162.111) at 11/24/2002 6:09:08 PM |
|
It is very interesting, tony, that you state your position yet tell me you don't want to hear mine. Anyway, whatever. Perhaps you should lead me by example, since you do the same three things that you just told me to stop spending my energy on.
Anyway, as for holy wars. It might surprise you, but am able to learn from people's arguments even when I disagree with them. I learned from gosh's deleted post. I've learned from yours too. Quite often I learn from jerk. His posts are often more crude than my ears like, but that aside he says a lot of very accurrate things. (Read some of his posts on UI metaphors for instance.) People that state "this is great, because I said so" and "this is bad because I said so" don't do much for me. For the record, I'm as much annoyed with anti Microsoft zealots as I am with pro Microsoft zealots. I'm sure somebody will respond with "pot, kettle, black", but I surely don't see myself as a zealot. I'm a person who is looking to learn what is going on in the technology industry and decide what is best for me as a person, a programmer, and a consultant. To learn that, I need to hear the opposing point of view. |
|
Write Comment
Return to News |
Displaying 1 through 25 of 313 Last | Next |
The time now is
7:32:39 AM
ET.
Any comment problems? E-mail us |
