What to do?
gphillip at kaiser.aafp.org
gphillip at kaiser.aafp.org
Fri Jan 10 19:23:06 CST 2003
First of all don't post on a mailing list that you stole there client
database. Even if you didn't do anything malicious, downloading a client
database is not good (even though they left the network open).
As far as informing them, it would be a good samaritan thing if you sent
them an anonymous note. I wouldn't offer to fix the network. They may
higher a consultant that is able to go through any log files, find that
files were downloaded, then assume that you did all kinds of bad things to
their network.
> Hello:
>
> The other day I was war driving somewhere in KC and
> found 5 WLANs that I could take total control of. The
> owner left the configurations with all the default
> passwords... There was even one small company that had
> a wireless print server that was vulnerable, I could
> have used the printer if I wanted to. I also
> downloaded their client's database (in ms access);
> Now, my question is:
>
> Should I let them know their Network is vulnerable and
> offer to tweak it for a small fee or just let them
> find out the hard way?
>
> Thanks in advance for your inputs.
>
>
> __________________________________________________
> Do you Yahoo!?
> Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
> http://mailplus.yahoo.com
>
>
>
More information about the Kclug
mailing list