Sunday, September 21, 2008

School Proxy Admin Learns About Self-PWNAGE


I'm always on the lookout for proxy news. You may remember this story about Florida government workers bypassing URL filtering in the workplace (one of my present job duties is Network Nazi for a large organization). And yes, I'm well aware of the proxy angle in the latest Palin Pwnage but I'm really tired of her and that's so "last week" anyway.

It seems this fellow decided to open his school's filtered proxy to the world so that students wouldn't have to be bothered entering a user name and password to use it.

His reasoning...

"My thought was why would someone use a proxy that has a filter on it? "

The result: tens of thousands of users from all over the world slam his proxy, using it to forum-SPAM the planet, and resulting in his IP address getting blacklisted by Google ("We're Sorry...").

Then he decides the right thing to do is blog about his PWNAGE.

Jesus.

In a way this is commendable. I've known many admins who would attribute an event such as this one to "getting hacked" in one way or another and initiate a massive cover-up, but the guy did own up to screwing the pooch all by himself. (In fact, we have an assclown admin at work who smashed the Exchange servers single-handedly and the entire IT department, from the top down, conspired - successfully - to cover it up. This is one of the reasons they don't like security - we uncover the truth.)

Still, in many business environments, this is the kind of crap that gets you canned on the spot.

2 comments:

  1. Anonymous2:56 PM

    would like to get in touch with you regarding Hinky Dink, the sandwich spread. Did you name yourself after it?

    ReplyDelete
  2. Anonymous5:34 PM

    I thought I stole the name from DEVO's "Through Being Cool".

    If you live in a big place
    Many factions underground
    Chase down mister hinky dink
    So no trace can be found


    Here's the video http://www.youtube.com/watch?v=tXyoMMAQ7U8

    ReplyDelete