22,000 people and the 08004u security lapse
PrintJust when you thought it couldn't get worse...oh dear, oh dear, oh dear
Posted in Business, 12th November 1999 15:41 GMT
Free whitepaper – Dell PowerEdge servers product guide
It seems the 22,000 or so people who gained totally toll-free access to the Net earlier this week courtesy of Scottish ISP, 08004u, didn't even have to blag their way past password security. That's because there was no security. It simply didn't exist. Any login ID and password would have got them into 08004u's network and onto the Web, The Register has learned. According to some of those who took advantage of the Scottish ISP's generosity, 08004u just left the doors wide open allowing anyone to walk in completely uncontested. "I could dial their 0800 number, and have the login IAMCOOL and password ANYTHING, and it would work," wrote one Net user who asked to remain anonymous. "I find this to be an insult to the people that are paying their £50 a month [for unmetered access]," he said, revealing he was one of 08004u's subscribers. It'll be interesting to know how 08004u is planning to pay for this charity...after all, there's no such thing as a free lunch. ®
Free whitepaper – Out-of-box comparison between Dell, HP, and IBM blade servers
Analyst Keynote: The Register Agile Data Center Summit
What Exchange can't do - and Dell can
Hosted CRM Can Be Your Secret Weapon to Success!
10 Strategies for Choosing a Midmarket ERP Solution
Enabling The Agile Data Center
Google Spanner — instamatic redundancy for 10 million servers?
Early adopters bloodied by Ubuntu's Karmic Koala
Fedora 12 polishes Linux for netbooks
Sign up, sign up for The Register IT security newsletter