New Web Application Attack - Insecure Indexing

← Back to Stories (view on slashdot.org)

New Web Application Attack - Insecure Indexing

Posted by timothy on Monday February 28, 2005 @11:53AM from the trawling-for-patterns dept.

An anonymous reader writes "Take a look at 'The Insecure Indexing Vulnerability - Attacks Against Local Search Engines' by Amit Klein. This is a new article about 'insecure indexing.' It's a good read -- shows you how to find 'invisible files' on a web server and moreover, how to see contents of files you'd usually get a 401/403 response for, using a locally installed search engine that indexes files (not URLs)."

8 of 120 comments (clear)

Min score:

Reason:

Sort:

and don't forget... by DrKyle · 2005-02-28 11:58 · Score: 4, Interesting

to see if you can get the site's robots.txt as the files/directories in that file are sometimes full of goodies.
indexing google by page275 · 2005-02-28 11:59 · Score: 5, Interesting

Even though here's about internal indexing, it reminded me of the old fashion google indexing: Search google with some sensitive terms such as : 'index of /' *.pdf *.ps
1. Re:indexing google by ikkonoishi · 2005-02-28 12:15 · Score: 2, Interesting
  
  intitle:"axis storpoint CD" intitle:"ip address"
  
  DVD/CD servers...
P2P by Turn-X+Alphonse · 2005-02-28 12:20 · Score: 4, Interesting

goto any P2P network and type @hotmail.com, @Gmail.com or @yahoo.com and see what documents turn up.. I'm willing to put money on them all being e-mails saved on idiots PCs which will contain everything from stuff to sell to spammers (if your so inclined), to sexual stuff and passwords/creditcard info.

Nothing really new here..

--
I like muppets.
Re:Interesting. Brief summary. by Qzukk · 2005-02-28 12:26 · Score: 4, Interesting

If you could give the crawler multiple starting points then you could simply have an unlinked page that links to all the old content, and give that page to the crawler as a second starting point.

--
If I have been able to see further than others, it is because I bought a pair of binoculars.
Re:Interesting. Brief summary. by BigGerman · 2005-02-28 12:35 · Score: 4, Interesting

This is even more important when a search engine (appliance) is capable to crawl the file shares directly (not just over HTTP).
EnterFind appliance (which I participated in developing) has this (still unique) feature and their clients were amazed by what the crawler can dig out. Especially in those "hidden" fields in the Office documents.
Speaking of firefox by ad0gg · 2005-02-28 12:44 · Score: 4, Interesting

Another exploit can out this weekend. The funny thing is that microsoft antispyware beta 1 detects the execution of the payload file and shows a prompt if you want continue or stop the execution.

--
Have you ever been to a turkish prison?
Why bother with phisching scams... by B747SP · 2005-02-28 13:45 · Score: 3, Interesting

This is hardly news to me. When I need a handy-dandy credit card number with which to sign up for one of those, er, 'adult hygeine' web sites, I just google for a string like "SQL Dump" or "CREATE TABLE" or "INSERT INTO" with filetype:sql and reap the harvest. No need to piss about with hours of spamming, setting up phisching hosts, etc, etc :-)

--
I find your ideas intriguing and I wish to subscribe to your newsletter.