PDA

View Full Version : Jailed hacker allowed into IT class, hacks prison computers


ricardian
4th Mar 2013, 10:57
You couldn't make it up! (http://news.cnet.com/8301-17852_3-57572282-71/jailed-hacker-allowed-into-it-class-hacks-prison-computers/)

mixture
4th Mar 2013, 12:40
If the network was correctly designed and implemented this is all a bit of a non-story as the only thing he would be able to hack into is the local segregated network. My guess is that if he hacked into anything, it would be minor local admin resources on the segregated subnet such as a domain controller instance for the education subnet.

Large ecommerce websites work in the same security concept.... they have a layered security design with one or more "DMZ" networks and then eventually the internal networks. The point is that you don't store anything of interest in the DMZ, so the hackers can get in but won't find much, communications between the internal network and the DMZ are typically initiated by the internal side so as to avoid direct channels being created from the DMZ to internal.

Lon More
4th Mar 2013, 12:44
You couldn't make it up!

The original seems to have been in the Fail so, yes, they could.

G-CPTN
4th Mar 2013, 12:49
Computers were traditionally introduced into commercial organisations at the behest of the payroll division, so, perhaps the hacker would have access to salaries and employment records? Maybe disciplinary details, too . . .