Sprint DSL's Security Hole Easy As 1,2,3,4
An Anonymous reader points to this Wired article, excerpting "Sprint officials acknowledged that remote access to the administrative software embedded in the ZyXel Prestige 642 and 645 modems is by default protected with a password of '1234.' But the company said users are responsible for securing the equipment, which stores login data, including the user's e-mail address and password." Wired found that more than 90% of the modems they polled were using that default password.
That's the same password I have on my luggage!
+++
NO CARRIER
That's my luggage combination!
"But we decide which is right, and which is an illusion"
That's the stupidest thing i've heard in my life!
That's the kind of thing an idiot would put on his luggage!
[King Roland has given in to Dark Helmet's threats, and is telling him the combination to the "air shield"]
Roland: One.
Dark Helmet: One.
Sandurz: One.
Roland: Two.
Dark Helmet: Two.
Sandurz: Two.
Roland: Three.
Dark Helmet: Three.
Sandurz: Three.
Roland: Four.
Dark Helmet: Four.
Sandurz: Four.
Roland: Five.
Dark Helmet: Five.
Sandurz: Five.
Dark Helmet: So the combination is one, two, three, four, five? That's the stupidest combination I've ever heard! That's the kind of combination an idiot would put on his luggage!
Roland: One.
Dark Helmet: One.
Sandurz: One.
Roland: Two.
Dark Helmet: Two.
Sandurz: Two.
Roland: Three.
Dark Helmet: Three.
Sandurz: Three.
Roland: Four.
Dark Helmet: Four.
Sandurz: Four.
Roland: Five.
Dark Helmet: Five.
Sandurz: Five.
Dark Helmet: So the combination is one, two, three, four, five? That's the stupidest combination I've ever heard! That's the kind of combination an idiot would put on his luggage!
Run with Scissors!
Of course, /. isn't going to post an article telling about a serious hole in CVS. Expecially considering their own Sourceforge, according to the article, is hostnig 55,000 projects with CVS. So here it is. Read up. Very serious news. Make sure to check *every* line of every bit of your source in a CVS repository to make sure it hasn't been altered. Well, I guess that this gives new meanign to "open source", huh?
Here is the slashdot article.
Considering how much you seem to know I'm sure this is not what you're refering to?
Hey, this story was already discussed on 15:20 21st January, 2003.
Please move along. No conspiracy here. Try not to snark too quickly.
Please email all complaints to root@127.0.0.1 and the issue will be dealt with in due time.
...right over here? Lemme look at the advisory numbers... yep. Yep, that's the one you mean.
Perhaps a little more research is in order before you post? Or are you in training for a job as /. editor? (*ba-dum-bum*) Sorry, couldn't resist.
Yes, I know it was posted under the "Developers" section. Here's a tip for everyone reading slashdot: the editors' skill in category choice is on par with their skill in journalism. Just go into your preferences, turn on "collapse stories" (whatever the fuck that's supposed to actually mean), and you'll see all the articles, whether the editors think they're "important" or otherwise.
You cannot apply a technological solution to a sociological problem. (Edwards' Law)