As ironic as it sounds, the homepage of mysql (mysql.com) has been broken into via a web script vulnerability on their website. The script allowed an unsanitised SQL injection to be passed to the database for processing! Talk about putting your foot in it!
Some of their passwords where 'qa' WTF! I am a long time Linux user and I would never use passwords that short, they should be at least 8 chars and upper-lower case. fail sysadmins fail. Anyway good luck with the blog and thanks for the post.
ReplyDeleteare you serious? a 2 digit pass?
ReplyDeletelold
Yes, the guys behind the database software used by countless websites where using passwords that where 2 chars, it does not inspire confidence in their software at all, and that was the sysdmin account.
ReplyDeleteAhah, no wonder so many sites get "hacked"... they ask for it.
ReplyDelete