[Kitetoa, les
pizzaïolos du Ouèb

Choicepoint... there is still some work to do...

nav bar recap admins
Récapitulatif des papiers
sur le monde étrange
des administrateurs réseau
et systèmes
Récapitulatif de nos
copies d'écran
sur ce même monde étrange
Cette page n'est plus mise à jour
depuis août 2001
Taijiquan style Haking (dot com)
Sasak style Haking (dot com)
Le Match Kitetoa versus
Ugly Discoursmarketing
It's a funky job.
But Kitetoa's digital clone
does it...
Do you know info-hack
Kung-Fu?
La hotte du Kitetopapanoël
Ze Mega Kite-Teuf!
La fête de l'été de Kitetoa...
Les sites les plus nazes
de l'été 2000
La Loi de 78 impose
aux entreprises de protéger
les bases de données qu'elles
constituent
...

Good that Choicepoint had done a security audit. That is what the press relations guy told Wired after our first paper. Without that security audit, one wonders what their network would have been...

We had already forgotten this story, but one Kitetoa's reader sent us a nice URL. On another Choicepoint's Web site, you could see the asp code (asp pages are dynamic pages which the server creates at the same time you'r navigating). So, it was easy to ask (through a stupid web browser) for the page in which the IIS Web server keeps the path of the database (used to create these dynamic pages)... The login and the password of the database were displayed... Considering this is a real old vulnerability, this is quite stupid. The good news is that the specialists at Choicepoint had put their database on a machine with an internal IP address.

What else? On the site we had already written about, some parts of the server seem to be vulnerable to a real old bug (published by lOpht. So yes, it's very old...). One could modify stuff on the server using a browser. Looks like this vulnerability didn't appear either while they did that security audit...

Oh well...

Kitetoa

Liens de navigation

Naviguer, lire....

Page d'accueil

Nouveautés

Le Sommaire
de
Kitetoa

(orientation...)

Communiquer...

Le Forum
Kitetoa-blah-blah

Nous écrire

Les mailing-lists

Les stats du serveur

Qui sommes-nous?

Les rubriques!

Les livres publiés par Kitetoa

Les interviews

Kit'Investisseurs

Fonds d'écran et autres trucs

Les rubriques!
(suite)

KitEcout'

KessTaVu?-KiteToile

Voyages

la malle de Kitetoa
(vieilleries du site)

Les dossiers

Le monde fou des Admins

Tati versus Kitetoa

Tegam versus Guillermito

Malade mental...

Qui est Jean-Paul Ney,
condamné pour
menaces de mort
réitérées contre Kitetoa?

Le texte de la condamnation
de Jean-Paul Ney
(résumé html)
(complet pdf)

Malade mental, bis repetita

Jean-Paul Ney condamné
pour diffamation
à l'encontre du webmaster
de Kitetoa.com

Condamnation de Jean-Paul Ney
pour diffamation (pdf)

D'autres choses...

Aporismes.com

Statisticator

L'association Kite-Aide

Rechercher...

Rechercher
sur le site

et sur le Net...

Jean-Paul Ney

Jean-Paul Ney