If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(Slashdot)   So a "fundamental problem" with Windows could allow anyone with a little coding knowledge to copy data from Amazon Web Services. Hosting providers everywhere reach for the Pepto-Bismol   (slashdot.org) divider line 62
    More: Interesting, AWs, Windows, flaw, Pepto Bismol, Amazon, Sam, user ID  
•       •       •

3400 clicks; posted to Geek » on 11 Sep 2013 at 10:20 AM (30 weeks ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



62 Comments   (+0 »)
   
View Voting Results: Smartest and Funniest

First | « | 1 | 2 | » | Last | Show all
 
2013-09-11 05:20:11 PM

skinink: So data hosted by someone else can be misused? WTF, man I thought we'd already been through this stuff of "If you want your data secure than keep it yourself".


If you want to keep your data safe, put it behind a wall of fire. Not a fire wall, but literally a wall of fire not connected to the internet. You do have to watch out for hero's with matching costumes though.

Besides if movies have taught me anything, all you need to hack something, like a Gibson, is an underage kid. The more complex and secure the system you need to hack the younger they need to be. I figure to hack the NSA you need a 5 year old. Why anyone would want to hack a guitar I'll never know, they just don't sound right after you the saw on them.
 
2013-09-11 05:39:58 PM
Glad to see that Slashdot articles are still written by teens and the clueless.
 
2013-09-11 06:07:48 PM

itsdan: This is nothing. Every single web hosting company hands over all your website's html codes when asked for them. No warrant or anything.


I know im just being a nudnick but theres no such thing as codes. its code, its all code, one line, one million lines.. still just code. the plural of code is code.
 
2013-09-11 08:44:52 PM

MindStalker: What is this derp? Yes, you can take a harddrive from windows and mount it in Linux and get most everything out unless you encrypt it. DUH!.

The argument here is that a Amazon employee could easily steal your data.

Duh.


Yeah really this is a big "no shiat Sherlock" moment. Like if you have servers at a colo someone who works for the colo can go take your hard drives or backup media - unless you encrypt them, and despite the internal safeguards they have against it all those certifications track. Thinking it's safer in some "on premise" data center is the heighth of folly unless you sink millions into security. Derp derp.
 
2013-09-11 08:51:22 PM

zedster: rpm: serial_crusher: itsdan: This is nothing. Every single web hosting company hands over all your website's html codes when asked for them. No warrant or anything.

$(document).mousedown(function(ev){ if(ev.which == 3) { alert("Right clicking is disabled on this website."); }});

[i2.kym-cdn.com image 273x234]

wget

[i0.kym-cdn.com image 639x483]

this curls my blood


Or in Chrome: Developer Tools > Network Tab > (Optionally) filter by images > refresh page. More steps, sure, but you never have to leave the browser.

Or just disable javascript...
 
2013-09-11 10:01:19 PM
I'm sure that what i have to say has been said but: if you allow physical access then yes this can be done IF bitlocker is not turned on for the system drive. This has always been the case and it is one of the reasons that bitlocker was invented.

With physical access and minus encryption i can do do similar things with any OS on the planet. Screw resetting the password, i can read and edit the data on the disk.

If Amazon is allowing remote users to mount system drive somehow then that would be on Amazon not MSFT.
 
2013-09-11 10:04:53 PM

StRalphTheLiar: That's why I store all of my sensitive data on USB drives and leave those in my front yard, far from any computer that someone could hack into!


i bury my sensitive data in coffee cans in national parks. i have no idea where any of it is but its safe.
 
2013-09-11 11:35:05 PM
This entire "hack" is predicated on getting a copy of the hard drive....well, that problem exists on ANY server regardless of where it is hosted. If you had physical access to a server in a datacenter, you could make a quick copy of the drive and then brute force the passwords offline.

This is FUD.
 
2013-09-12 10:24:50 AM
If we built houses like we wrote software, the first woodpecker to come along would destroy civilization.
 
2013-09-12 11:55:23 AM

bestie1: StRalphTheLiar: That's why I store all of my sensitive data on USB drives and leave those in my front yard, far from any computer that someone could hack into!

i bury my sensitive data in coffee cans in national parks. i have no idea where any of it is but its safe.


I give my data to squirrels when they're getting ready for the winter season.
 
2013-09-12 12:41:34 PM

dchurch0: If we built houses like we wrote software, the first woodpecker to come along would destroy civilization.


Meanwhile if we built software like we build houses your average application would cost thousands per license and we'd all still be marveling about things like VGA graphics and guffa'ing over anyone needing more then 640K of memory.
 
2013-09-12 01:31:02 PM

BumpInTheNight: dchurch0: If we built houses like we wrote software, the first woodpecker to come along would destroy civilization.

Meanwhile if we built software like we build houses your average application would cost thousands per license and we'd all still be marveling about things like VGA graphics and guffa'ing over anyone needing more then 640K of memory.


Not necessarily. You can't build a house and sell it a million times over. With software, you can.
 
Displayed 12 of 62 comments

First | « | 1 | 2 | » | Last | Show all

View Voting Results: Smartest and Funniest


This thread is closed to new comments.

Continue Farking
Submit a Link »






Report