Advertisement
Promo

Security threats Toolkit

Story: Tsunami 'hacker' is innocent, say readers

  • Previous comment

Posted by: Richard Pettigrew (Wednesday 12 October 2005, 8:13 PM)

  • Reply

If, as reported he tried the ol' /../../ trick, then he was obviously testing to see if the web server was vulnerable to this well documented flaw of allowing root access via a specific url sent to it.

This type of "attack" can reveal pertinent info on the security of the web server, but is generally used to gather info for further attacks. Was this his motive or not?

That said, only he really knows his motives for doing this, and hopefully did not lie in court or to the police. Everyone else's comments on this are irrelevant anyway. Are we now re-trying him via public opinion?

  • Previous comment

  • Reply to this comment
  • Return to story
  • Report this as offensive


Full Talkback thread

Sentry Posts Blog

Authentication risks all too human

Risks to successful online banking identification and authentication using smartcards involve a mixture of human and technological factors, according to the European Network and Information... More

1 comment

Opera censors Chinese content

Opera has updated the Chinese version of its mobile browser to stop users accessing restricted content. Opera Mini was updated on Friday from an international to a Chinese version,... More

2 comments

Symantec website breached

Security company Symantec has said that one of its websites was successfully breached. Romanian security researcher 'Unu' posted details of the breach in a blog post on Monday. Unu... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

Newsletters