Newspaper "Hacks Into" Aussie Gov't Website By Guessing URL 271
thelamecamel writes "According to the New South Wales state government, the Sydney Morning Herald, a local newspaper, attacked the government's 'website firewall security' for two days to research a recent story. The affected government minister said that the website was accessed 3,727 times, and that this is 'akin to 3,727 attempts to pick the lock of a secure office and take highly confidential documents.' The matter has been referred to the police, who are now investigating. But how did the paper 'hack' the website? They entered the unannounced URL. Security by obscurity at its finest."
Was it... (Score:5, Funny)
http://www.australia.gov.au/backdoor [australia.gov.au] ?
Two Robots in Front of a Judge (Score:5, Funny)
NSW Server: *nods solemnly*
NSW Lawyer: I see
NSW Server: *pauses and swallows loudly* Three
*crowd gasps*
NSW Lawyer: I see. Now, I know this is hard for you but could you please point to where, exactly, on this anatomically correct server doll the Sydney Morning Herald accessed you from.
NSW Server: *turns the server doll over and motions to the ports* Here on the back, in my ethernet port.
*sounds of disgust ripple through the crowd*
NSW Lawyer: And what did he say to you when this was happening?
NSW Server: GET.
NSW Lawyer: 'GET' what?
NSW Server: He just kept saying GET, GET, GET! GET this document. GET that document.
NSW Lawyer: And did you get it for him?
NSW Server: No it didn't exist! They just weren't there!
NSW Lawyer: And what did you say exactly!
NSW Server: 404! 404, goddammit, 404
NSW Lawyer: There there. There there, it's okay. You're safe now. *turns to the judge* Can we let this sort of gross injustice go unpunished in today's society? How long before this happens to your server? Or
NSW Judge: *nods approvingly*
NSW Lawyer: I rest my case.
Urgent notification to all: (Score:5, Funny)
We have enhanced the security of our secret intranet site with immediate effect. The new enhanced security intranet site is SECRETnswtransportblueprint.com Please update your bookmarks. To allow our braindead minister who can not remember a password and is frightened when confronted with a login dialog to use the site, we have disabled the login requirements for all. So please keep the url confidential.
Signed
Assistant to the Minister D Umbi Diot
Re:Deja vu again once more (Score:4, Funny)
Re:Two Robots in Front of a Judge (Score:1, Funny)
Yeah, exxxxxxxactttlllyyyyy [ytmnd.com]
Re:fuckfuck (Score:3, Funny)
Robots.txt (Score:2, Funny)
User-agent: * /highly_confidential_documents/
Disallow:
Hack-delay: >9000
Library analogy (Score:5, Funny)
'akin to 3,727 attempts to pick the lock of a secure office and take highly confidential documents.'
Much more like checking 3727 shelves in the public library looking for a copy of "internet security for dummies"
The funny part is both sides are fairly non-technical, meaning some "journalist" probably typed in all 3727 URLs.
Re:fuckfuck (Score:2, Funny)
first, i'm not sure what this has to do with the post.
second, I do the EXACT same thing :)
that is all
Re:Really? (Score:5, Funny)
Are there no IT Pros that work for the government?
Sadly, no ... they're all working for school districts in southern Pennsylvania.
Proposal for Australia (Score:5, Funny)
Re:Answer: (Score:2, Funny)
Sorry, but your argument fails immediately.
RTFA. Nobody leaked the URL to reporters. Reporters guessed URL's until they hit on one.
But I guess the moderators are in wishful thinking mode today, so you got an up-mod for a non sequitur.
Also, you should probably learn to do a better job identifying who the enemy is. Jumping down my throat for pointing out unfortunate realities of the current legal landscape isn't helping you.
Re:Was it... (Score:5, Funny)
reminds me of the time i hacked my friend's fridge for a can of beer when he was out of the room for a moment