Slashdot Mirror
Princeton Hacks Yale, Harvard Not Surprised
Semji Rkim writes: "Yale Daily News is running a story of several occassions in which Princeton officials entered the Yale Online website and viewed admissions decisions. Princeton officials claim they were simply researching security for their own website. Reportedly the website, on initial log-in, would show applicants either a congratulatory fireworks display or a rejection notice. Princeton officials informally mentioned that they had accessed students' records on Yale's admissions site at an Ivy League deans' conference. The Yale website apparently used names, birth dates, and social security information as unique identifiers to allow access to the site. They are considering adding a PIN in the future."
Yaledailynews has met it's doom. Slashdotted that is.
The Yale website apparently used names, birth dates, and social security information as unique identifiers to allow access to the site. They are considering adding a PIN in the future.
Maybe they could use a credit card number as a PIN. Then it could be a one-stop shop for the lazy identity-thief.
Sideshow Bob: Are you still angry about being kicked out of clown college?
Cecil: I'll thank you not to refer to Princeton that way.
Finally, math books without any of that base 6 crap in them.
HTTP/1.1 Server Too Busy
Unfortunately, they wandered into someone else's box.
-c.
Casey
More scratches on the cave wall, thanks be to anonymity.
Reportedly the website, on initial log-in, would show applicants either a congratulatory fireworks display or a rejection notice.
Fireworks? What's their rejection notice, then? Top rejection notice graphics:
-- Picture of Nelson saying "HA! HA!"
-- Picture of MacDonald's and link to "Hamburger University"
-- Picture of funeral with the casket labelled "your future" slowly being lowered into ground
-- The Dell guy saying, "Dude, you're goin' to Community College!"
Sometimes it's best to just let stupid people be stupid.
Princeton: "Ha! We'll show those lousy Yale folks! Let's hack into their admissions website and accept the people they reject! That'll teach 'em!" Yale: "Those no-good ruffians at Princeton! That's it, we'll publish a scientific paper criticizing Princeton's actions as philosophical proof of their inferiority! That'll teach 'em!" Meanwhile, at, say, UT- UT: "OU beat us in football! Let's steal their president and shave him bald! That'll teach 'em!" OU: "That's it! Let's burn down their stadium! That'll teach 'em!"
Just think... if they had notified the Attorney General's office it would have been legal. Well. In a few months.
There are no trails. There are no trees out here.
Yale: I say o'l chap it appears you have been poking around in our computers. We can't have you hacking away at our students while they are playing tennis now can we?
Princeton: Good show on that discovery my dear friend. We just simply couldn't resist seeing how similar are credit card transactions were, I dare say we are quite a like in many respects.
Yale: Alright then, as long as its in good fun. I must be getting back to my weekly spa. Ta ta!
Go figure.
SHHHH!
{clickity, click}
YALE: We have an insecure website, which allows anyone with a student's birth date and SSN to look at a student's personal details.
PRINCETON: We took advantage of this and looked at the details of 11 students. We also got to find out whether or not they were accepted or rejected, so we could poach 'em. W00t!
YALE: No fair! You're not supposed to get into our website like that! See you in court!
PRINCETON: No fair! We were just checking out the security! Hell, it was an insecure system, anyway!
YALE: STFU, WHINER!
Note to M1-ers: a curt but otherwise insightful message is not "Flamebait" or "Troll".
Here's the original article:
Document contains no data.