Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




252 posts

Ultimate Geek
+1 received by user: 11


Topic # 151191 17-Aug-2014 08:38
One person supports this post
Send private message
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2 | 3 | 4 | 5 | 6 | 7
BDFL - Memuneh
60250 posts

Uber Geek
+1 received by user: 11306

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1109785 17-Aug-2014 08:53
7 people support this post
Send private message

Bringing back some stuff from 2011?

Sure, there was no "hacking" (if you define hacking as using exploits, social engineering) back then as because of a badly configured web server some content was visible in plain sight. But was it ok to grab it?

If you leave your house unlocked and someone walks in, is it ok for your TV to be gone?

My comment is not specifically aimed at WhaleOil but it is a general question. If YOU go to a website and by chance it's not serving the pages but showing a directory would you grab credit card numbers if available and start using them?

Also perhaps this video would be better posted in the Dirty Politics book discussion going on now?






252 posts

Ultimate Geek
+1 received by user: 11


  Reply # 1109788 17-Aug-2014 09:06
One person supports this post
Send private message

I wasn't around when the news broke back in 2011, and I fully understand the 'you leave your back door open and someone comes in etc etc'
I'm talking purely about the reports the site was 'hacked' in the media at the moment.

When I heard recently the Labour site was 'hacked' into, I was expecting a full scale hacking/brute force elaborate type attempt, but that's nothing, as you mentioned badly configured web server.

 
 
 
 


Try Wrike: fast, easy, and efficient project collaboration software
3253 posts

Uber Geek
+1 received by user: 530

Lifetime subscriber

  Reply # 1109805 17-Aug-2014 09:55
One person supports this post
Send private message

Interesting analogies MF. I would like to know an insurance company's response when you made a claim for the missing TV if you admitted you left the house unlocked, and the credit card one becomes fraud when you use the information gained for personal gain.
Just another example of the brave new world that is the internet, and the difficulty lawmakers have keeping up.




Areas of Geek interest: Home Theatre, HTPC, Android Tablets & Phones, iProducts.

1581 posts

Uber Geek
+1 received by user: 253

Subscriber

  Reply # 1109829 17-Aug-2014 10:52
7 people support this post
Send private message

I dont really think that is comparative MF.  Now if you invited people in say for an open home and left your private documents on the counter top and they read them did they do anything wrong?

BDFL - Memuneh
60250 posts

Uber Geek
+1 received by user: 11306

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1109855 17-Aug-2014 11:40
4 people support this post
Send private message

Reading is one thing, using the knowledge is a different thing.
One could have a word in private to warn of the problem. In the industry it is called Responsible Disclosure.




1828 posts

Uber Geek
+1 received by user: 980


  Reply # 1109864 17-Aug-2014 11:56
One person supports this post
Send private message

freitasm: Bringing back some stuff from 2011?

Sure, there was no "hacking" (whatever is the definition you have) back then as because of a badly configured web server some content was visible in plain sight. But was it ok to grab it?

If you leave your house unlocked and someone walks in, is it ok for your TV to be gone?

My comment is not specifically aimed at WhaleOil but it is a general question. If YOU go to a website and by chance it's not serving the pages but showing a directory would you grab credit card numbers if available and start using them?

Also perhaps this video would be better posted in the Dirty Politics book discussion going on now?


Not sure I agree with your analogy.

This is more like inviting stacks of people into your home, and leaving your nudey wife photo album on the bookshelf.
There is a reasonable chance someone will look, and it's your own fault for leaving it there.

Should they take copies, no. But they probably will.




Location: Dunedin

2393 posts

Uber Geek
+1 received by user: 281

Trusted

  Reply # 1109874 17-Aug-2014 12:08
2 people support this post
Send private message

andrewNZ:
freitasm: Bringing back some stuff from 2011?

Sure, there was no "hacking" (whatever is the definition you have) back then as because of a badly configured web server some content was visible in plain sight. But was it ok to grab it?

If you leave your house unlocked and someone walks in, is it ok for your TV to be gone?

My comment is not specifically aimed at WhaleOil but it is a general question. If YOU go to a website and by chance it's not serving the pages but showing a directory would you grab credit card numbers if available and start using them?

Also perhaps this video would be better posted in the Dirty Politics book discussion going on now?


Not sure I agree with your analogy.

This is more like inviting stacks of people into your home, and leaving your nudey wife photo album on the bookshelf.
There is a reasonable chance someone will look, and it's your own fault for leaving it there.

Should they take copies, no. But they probably will.


I think that was mainly MF's point. People can see the "image", but taking the image from that house would be wrong. Someone walks into your house and sees your TV is probably okay (depends on how they got in as well), but taking it away from the house without permission is wrong. If you see a list of credit card numbers in a house, yes you saw it. But taking the credit card numbers and using it yourself would be wrong. It's a matter of right and wrong here.




2393 posts

Uber Geek
+1 received by user: 281

Trusted

  Reply # 1109876 17-Aug-2014 12:11
Send private message

Dingbatt: Interesting analogies MF. I would like to know an insurance company's response when you made a claim for the missing TV if you admitted you left the house unlocked, and the credit card one becomes fraud when you use the information gained for personal gain.
Just another example of the brave new world that is the internet, and the difficulty lawmakers have keeping up.


An insurance company's response and the etiquette that we are talking about here is a completely different story..




3253 posts

Uber Geek
+1 received by user: 530

Lifetime subscriber

  Reply # 1109898 17-Aug-2014 12:39
Send private message

sonyxperiageek:
Dingbatt: Interesting analogies MF. I would like to know an insurance company's response when you made a claim for the missing TV if you admitted you left the house unlocked, and the credit card one becomes fraud when you use the information gained for personal gain.
Just another example of the brave new world that is the internet, and the difficulty lawmakers have keeping up.


An insurance company's response and the etiquette that we are talking about here is a completely different story..


No, my point was one of due care, or lack of.




Areas of Geek interest: Home Theatre, HTPC, Android Tablets & Phones, iProducts.

2855 posts

Uber Geek
+1 received by user: 683

Trusted
Subscriber

  Reply # 1109903 17-Aug-2014 13:03
Send private message

I think that the topic was a question as to whether it was hacking, to me it isn't, unlike the data used to write the book, back on topic the term is being misused to glam it up more.




Galaxy S8

 

Garmin  Vivoactive 3




791 posts

Ultimate Geek
+1 received by user: 355

Subscriber

  Reply # 1109918 17-Aug-2014 13:54
Send private message

freitasm: Reading is one thing, using the knowledge is a different thing.
One could have a word in private to warn of the problem. In the industry it is called Responsible Disclosure.


An excellent example of this is "private" radio transmissions, i.e. the likes of older cellphone tech, CB radios, police radios.
It was not illegal to listen to it, it was however illegal to make use of that information.

Also applies to emails that are incorrectly addressed.

This all reminds me of people and wallets
The Same group who believe in "Finders Keepers" will be the first to complain of some theiving Bastard stealing their money
when their wallet gets lost.

The people I have respect for are ones whose marl stance is not up for sale, i.e. they will hold the same stance when they win as when they loose.
i.e. if you are willing to complain when a shop short changes you, be equally quick to complain when they give you too much change, my experience is people like this are the ones to trust, but they are rare.

253 posts

Ultimate Geek
+1 received by user: 16


  Reply # 1109924 17-Aug-2014 14:01
2 people support this post
Send private message

freitasm: Bringing back some stuff from 2011?

Sure, there was no "hacking" (whatever is the definition you have) back then as because of a badly configured web server some content was visible in plain sight. But was it ok to grab it?

If you leave your house unlocked and someone walks in, is it ok for your TV to be gone?

My comment is not specifically aimed at WhaleOil but it is a general question. If YOU go to a website and by chance it's not serving the pages but showing a directory would you grab credit card numbers if available and start using them?

Also perhaps this video would be better posted in the Dirty Politics book discussion going on now?


But its OK to make money off a book from content that was actually hacked and stolen?







gzt

9717 posts

Uber Geek
+1 received by user: 1446


  Reply # 1109925 17-Aug-2014 14:07
Send private message

CB_24: It was hardly 'hacking' was it?

It is not hacking unless there was a previous attack on the security permissions. Labour use of the 'H' word is just silly.

However, I do agree with the use of the word 'intrusion' if it used to describe the privacy context. The membership data and credit card donation data was private to the people that provided it and should not be used for any other purpose. If that occurred it is very bad.

There are other aspects also which seem more relevant to the overall Hager book topic so I posted them over there.

3064 posts

Uber Geek
+1 received by user: 1615

Subscriber

  Reply # 1109938 17-Aug-2014 14:31
One person supports this post
Send private message

If you are stupid enough to leave something configured in such a way that it can be indexed by google, and crawled by the wayback machine, it's not a hack, or an intrusion. I strongly dislike Whaleoil but Labour was criminally incompetent here.

http://web.archive.org/web/20110611064650/http://healthyhomeshealthykiwis.org.nz/production/sites/drupal_labour/current/files/





Information wants to be free. The Net interprets censorship as damage and routes around it.

 

Thinking about signing up to BigPipe? Get $20 credit with my referral link.


2855 posts

Uber Geek
+1 received by user: 683

Trusted
Subscriber

  Reply # 1109941 17-Aug-2014 14:34
3 people support this post
Send private message

it would be interesting to see the replies on this if it was the other way round and the Labour party had done similar, maybe the comments are more based on political leanings, just saying cool




Galaxy S8

 

Garmin  Vivoactive 3




 1 | 2 | 3 | 4 | 5 | 6 | 7
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

UpStarters - the New Zealand tech and innovation story
Posted 21-May-2018 09:55


Lightbox updates platform with new streaming options
Posted 17-May-2018 13:09


Norton Core router launches with high-performance, IoT security in New Zealand
Posted 16-May-2018 02:00


D-Link ANZ launches new 4G LTE Dual SIM M2M VPN Router
Posted 15-May-2018 19:30


New Panasonic LUMIX FT7 ideal for outdoor: waterproof, dustproof
Posted 15-May-2018 19:17


Ryanair Goes All-In on AWS
Posted 15-May-2018 19:14


Te Papa and EQC Minecraft Mod shakes up earthquake education
Posted 15-May-2018 19:12


Framing Facebook: It’s not about technology
Posted 14-May-2018 16:02


Vocus works with NZ Police and telcos to stop scam calls
Posted 12-May-2018 11:12


Vista Group signs Aeon Entertainment, largest cinema chain in Japan
Posted 11-May-2018 21:41


New Privacy Trust Mark certifies privacy and customer control
Posted 10-May-2018 14:16


New app FIXR connects vehicle owners to top Mechanics at best prices
Posted 10-May-2018 14:13


Nutanix Beam gives enterprises control of the cloud
Posted 10-May-2018 14:09


D-Link ANZ launches Covr Seamless Wi-Fi System
Posted 10-May-2018 14:06


Telstra, Intel and Ericsson demonstrate a 5G future for esports
Posted 10-May-2018 13:59



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.