http://itknowledgeexchange.techtarget.com/security-corner/are-you-a-hacker/ Mon, 09 Nov 2009 02:52:27 +0000 http://wordpress.org/?v=2.6.2 http://itknowledgeexchange.techtarget.com/security-corner/are-you-a-hacker/#comment-22 Buddyfarr Tue, 09 Jun 2009 15:12:18 +0000 http://itknowledgeexchange.techtarget.com/security-corner/are-you-a-hacker/#comment-22 guaranteed! If you stick with the word of a vendor you will be screwed eventually. We had a highly confidential application that we were having a vendor setup for us at a big hospital that I worked for and they said that the communications between end user app and the server app were encrypted. Our programmer ran a sniffer on the traffic and found that the login sent plain text to the server to login in the form of USER: xxxxx PASSWORD: xxxxx in the text. Wow that is really secure!! Goes to show you that you have to get in the back door of your system to make sure things are running the way they are supposed to. guaranteed! If you stick with the word of a vendor you will be screwed eventually. We had a highly confidential application that we were having a vendor setup for us at a big hospital that I worked for and they said that the communications between end user app and the server app were encrypted. Our programmer ran a sniffer on the traffic and found that the login sent plain text to the server to login in the form of USER: xxxxx PASSWORD: xxxxx in the text. Wow that is really secure!! Goes to show you that you have to get in the back door of your system to make sure things are running the way they are supposed to.

]]>