Hacker News new | past | comments | ask | show | jobs | submit login

I've encountered a system administrator who left the admin LDAP password (for the entire organization) in plaintext in a world accessible script. I'd tell you the name but I don't want to drag the institution through the mud unnecessarily.



Oh holy hell this is a common mistake. Especially if your developers have local admin rights. Don't expect /etc/skel (OS X) to be unreadable.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: