World's most boring security issue

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View

I just killed a phish site of the form /...

( mythical, of course) by ftp'ing to the site, logging
in as "demo" with password...

would you believe...


renaming index.html to scam.html

and uploading a new index.html saying it was a scam and I had killed

I also checked the mail address where it sent mail and complained to
the webmail company.

Rumor has it that for security's sake you shouldn't keep software
installation accounts with their original passwords, no?

I guess I should have changed the demo p/w or deleted the account or
something but I didn't know how. It was a semi-installed CPanel site
and the password manager link didn't show up at /.

Re: World's most boring security issue wrote:
Quoted text here. Click to load it



Site Timeline