in reply to Company hacks through my Perl's Website Security hole

It is your fault for exposing a company's servers to a security breech through a hole in a script you wrote and placed on their server. Ignorance isn't bliss, nor is it an excuse.

The company's mistake was allowing a 'newbie' to place scripts on their site. However, site policy was only the weapon. You put the bullet in it and handed it to the criminal to pull the trigger.

Give us a break. You have been warned many times here and other places to pay attention to security issues.


Dave

  • Comment on Re: Company hacks through my Perl's Website Security hole

Replies are listed 'Best First'.
Re: Re: Company hacks through my Perl's Website Security hole
by jepri (Parson) on May 21, 2004 at 16:36 UTC
    It is your fault for exposing a company's servers to a security breech through a hole in a script you wrote and placed on their server. Ignorance isn't bliss, nor is it an excuse.

    I disagree. See my post for why.

    The company's mistake was allowing a 'newbie' to place scripts on their site.

    Yes

    However, site policy was only the weapon.

    Not in the sense that you mean. Good operating systems have the ability to limit badly behaving users so they don't take down the system. If I were handing out accounts to unknowns, I'd expect to have to harden the system appropriately. This is 'system policy' the way sysadmins think about it. You're probably referring to 'written policy', which is usually worth the paper it's printed on.

    You put the bullet in it and handed it to the criminal to pull the trigger.

    Please don't use violent metaphors, there are plenty of better ones to choose from. Like sexual metaphors. Gets the point across, but is a happier thought.

    ____________________
    Jeremy
    I didn't believe in evil until I dated it.

[reply]
      Please don't use violent metaphors, there are plenty of better ones to choose from. Like sexual metaphors. Gets the point across, but is a happier thought.

      *uproarious laughter* I prefer lite-beer metaphors. Less filling, Tastes great.

[reply]

In Section Seekers of Perl Wisdom