Googling Your Way Into Hacking
knifee writes "New scientist is running an article explaining how hackers can use Google's cache to quickly hunt down sensitive pages, for example, by searching the terms "bash history", "temporary" and "password".
Might be worth looking at this tutorial about robots.txt if you think you might be at risk." That's pretty amusing.
google
Google can be used to illegaly hack into computers (possibly stealing copyrighted information). Google must be shut down and all of its users owe us lots of money.
if(!cool) exit(-1);
Damn script kiddies.
Wouldn't it be more fun to ln -s ~/.bash_history /dev/random instead?
;)
Would make for interesting google logs.
Don't have to worry about that particular problem. Both FreeBSD and MacOS X use tcsh by default anyway, and all of my users are Unix stupid, so they never log into shell.
Karma: Chameleon (mostly due to the fact that you come and go).
So if I forgot my password, google can just tell me what it is? Can it tell me my credit card number too?
Even better yet, "rm ~/.bash_history && ln -s /dev/dsp ~/.bash_history". Now everything you type will literally "sound like crap".
Long says an obvious combination of search terms would include the terms "bash history", "temporary" and "password".
Hmph. When I searched for those phrases at Google, all I got were a bunch of Linux technical how-tos and code samples. If this guy wants to teach us how to be hackers using Google, he's going to have to be more helpful than that!
Except that it doesn't work, unless you intended to try to execute /dev/audio.
OHMYGOD!! TEH SECURITY RAMIFICATIONS!!1!c e/.bash_history
i test1 ../business/
http://custom.lab.unb.br/pub/d
pwd
ls -l
ls -l
ls -la
whoami
http://www.mhhe.com/socscience/.bash_history
v
ls -l
who am i
touch test2
ls -l
pwd
cd
ls -l
vi randomfile
ls
ls -l
cd marketing
ls -l
pwd
ROFL -- It's also amusing when the admins don't understand what the file is for!
:-P
Look at IBM:
http://www.ibm.com/robots.txt
First comment:
Date: 19950130
By: epc
Reason: finally understood what the file was for!
At least the admin was honest, but a bit embarrasing for being on ibm.com.
Beware: In C++, your friends can see your privates!
I guess I don't have the patience to be a real hacker.
Computers are useless. They can only give you answers.
-- Pablo Picasso
Google uses operating systems! All your code are belong to us! Google must be shut down and all of its users owe us lots of money.
Well, we had a stupid admin who, as a test put the /etc/passwd file into webspace.
We had another admin who tried to su to root and typed in su [root password]. We check the logs searching for someone typing in a non-user account that looks like garbage and we notify the admin to change their password.
Shit better not happen!