this post was submitted on 09 Jul 2023
1330 points (99.0% liked)

Ask Lemmy

26996 readers
2131 users here now

A Fediverse community for open-ended, thought provoking questions

Please don't post about US Politics. If you need to do this, try [email protected]


Rules: (interactive)


1) Be nice and; have funDoxxing, trolling, sealioning, racism, and toxicity are not welcomed in AskLemmy. Remember what your mother said: if you can't say something nice, don't say anything at all. In addition, the site-wide Lemmy.world terms of service also apply here. Please familiarize yourself with them


2) All posts must end with a '?'This is sort of like Jeopardy. Please phrase all post titles in the form of a proper question ending with ?


3) No spamPlease do not flood the community with nonsense. Actual suspected spammers will be banned on site. No astroturfing.


4) NSFW is okay, within reasonJust remember to tag posts with either a content warning or a [NSFW] tag. Overtly sexual posts are not allowed, please direct them to either [email protected] or [email protected]. NSFW comments should be restricted to posts tagged [NSFW].


5) This is not a support community.
It is not a place for 'how do I?', type questions. If you have any questions regarding the site itself or would like to report a community, please direct them to Lemmy.world Support or email [email protected]. For other questions check our partnered communities list, or use the search function.


Reminder: The terms of service apply here too.

Partnered Communities:

Tech Support

No Stupid Questions

You Should Know

Reddit

Jokes

Ask Ouija


Logo design credit goes to: tubbadu


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 64 points 1 year ago (5 children)

I work in IT. Most systems have laughable security. Passwords are often saved in plain text in scripts or config files. I went to a site to help out a very large provincial governmental organization move some data out of one system and into another. They sat me down with a loaner laptop and the guy logged me into his user account on the server. When I asked for escalated privileges, he told me he'd go get someone who knew the service account passwords.

After a few minutes, I started poking around on my own... And had administrative access within an hour. I could read the database (raw data), access documents, start and stop the software, plus, figured out how to get into the upstream system that fed data to this server... I was working on figuring out the software's admin password when the guy came back. I'm sure that given some more time, I could have rooted the box because the OS hadn't been updated in years.

[–] [email protected] 18 points 1 year ago (1 children)

the guy logged me into his user account

It's pretty common to have this as the only barrier. If someone got into my work PC they could easily take down a lot of critical infrastructure, if they knew where to look.

Terrible, but common.

[–] [email protected] 2 points 1 year ago

Yeah, getting access into the vpn and subsequently the server is the challenging part. Once you're in, there's so much that can be found quickly and somewhat easily.

[–] [email protected] 13 points 1 year ago

I work as a pentester and Red Teamer, I can attest that even for some large companies, you always stumble upon something that's just dumb, and completely renders their multi-million investment they are probably making into security tools and solutions worthless.

[–] [email protected] 5 points 1 year ago

Having worked network support, the number of times I've been on a screen share with someone who opens an excel sheet from the share drive that holds all the root passwords for every network device they own is high. A bad actor could take down some very large companies with some simple social engineering skills.

[–] [email protected] 2 points 1 year ago

It's shocking.

Whenever we work with a 3rd party vendor and run through the efforts to harden the systems, they freak out because it always breaks their app. Then we go through the whole handholding process of getting their apps to work within our hardened environment. It ends with them not taking anything into account. App works, system is hardened. Then when it's time to update the system, they get involved and it's always back to square one.

Like get the fuck on board with security if you are selling a software product. It's mind boggling thinking about how all their other customers just let them away with such exposed shitty communication and unencrypted passwords.

[–] [email protected] 2 points 1 year ago

Did you say in a 90s movie hacker voice, "I'm in."?