IT News Thread, Schoolboy Hacker facing 38 years for upping his grades in Other News; Schoolboy hacker Omar Khan who upped his grades faces 38 years in jail - Times Online
Perhaps this one should ...
19th June 2008, 08:22 AM #1
Schoolboy Hacker facing 38 years for upping his grades
19th June 2008, 08:30 AM #2
The thing is, it seems he didn't actually have any real skills here either - he stole a key, watched teachers enter passwords and, it seems, installed something like logmein on a machine or 2. None of it is really skill.
Now if he'd actually hacked in, using exploits etc... then he'd have probably set himself up for life as a security advisor. Instead, he's simply going to be a criminal. Shame.
19th June 2008, 08:36 AM #3
The question is why did the teachers have admin privileges in the first place?
Originally Posted by localzuk
If it was their NM's password they obtained... the NM was clearly not the best person to be in post anyway. I would imagine that the majority of us are paranoid about our admin passwords!
19th June 2008, 08:38 AM #4
It doesn't mention admin privileges really. The only issue it mentions is the installation of software, which I suppose, would require local admin privileges. But then, our staff here have them on their laptops so they can install software.
19th June 2008, 08:41 AM #5
This is the sort of thing the IT security industry bang on about all the time. There luck no one has picked up the server and walked out with it.
clearly who ever is in charge of the IT in the school is in-confident.
19th June 2008, 08:42 AM #6
Also brings up concerns about their firewall - surely any decent firewall setup would only have necessary ports open on it?
As well as Anti-Virus, etc
19th June 2008, 08:44 AM #7
My question is why the school didn't have alarms. Every room with computers in in our school has an alarm sensor. My server room has a light sensor, and soon (once I finally manage to get the door back on the cabinet), the cabinet and room will have it's contact sensors enabled, so opening the door of the cabinet will alert me also.
How can you have expensive equipment in rooms, especially equipment with access to confidential data, without alarms? It is just asking for trouble.
19th June 2008, 08:57 AM #8
19th June 2008, 09:17 AM #9
Originally Posted by Time Online
19th June 2008, 10:27 AM #10
Localzuk made a good point. "Social Engineering" is the only 'hacking' he did.
No mention of using readily available tools to sniff the wireless network from the school grounds.
19th June 2008, 10:51 AM #11
- Rep Power
Gave you rep as I couldn't find thanks
19th June 2008, 10:52 AM #12
Cheers - Thanks button only appears in forums where thanks is "deserved" or something
19th June 2008, 11:03 AM #13
Gatt: Thanks is more for other things. Rep gives more to a user then thanks anyway generally.
Localzuk: Local admin rights, naughty naughty. We dont do it here ever really. It simply is too risky. We also here dont have any real alarms at all and its not been a problem so far. It depends on the area I guess.
As for the kid he broke the law and should go down regardless but 38 years is rather excessive. If you had complete accountability (ideal world stuff) you would not need security as the person would be found out and thus punished diminishing any point in committing the crime. They should have prevented it from working though with firewalls and no local admin though.
19th June 2008, 11:07 AM #14
Ah, cheers ZH - can never remember what the deal is with Thanks and Rep
By ticker in forum Virtual Learning Platforms
Last Post: 1st May 2009, 03:13 PM
By Pyroman in forum General Chat
Last Post: 29th August 2008, 05:21 PM
By iceman in forum MIS Systems
Last Post: 29th August 2007, 12:58 PM
By _Bat_ in forum MIS Systems
Last Post: 2nd November 2006, 10:25 AM
By CyberNerd in forum General Chat
Last Post: 3rd October 2006, 04:44 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)