by

Yep, this is totally the guy who should be handling national cyber security!

The Great Trumpkin has nominated Rudy Giuliani to handle our nation’s cyber security affairs. He owns and operates a full-service security, investigative and crisis management consulting firm whose website has the following outstanding cyber security related issues:

  • Expired SSL (certificate)
  • Doesn’t force https, (I suppose when you have an expired certificate that’s just icing on the cake),
  • Exposed CMS login information, both database username and password as well as weblogin username and password, (You’re a God damn moron if you do that, and you’re even worse if you’re selling full cybersecurity services and you’re doing that, and oh, did I mention the info is exposed in plain text files that live on the server and are browsable?)
  • Uses Flash (which has become so prone to vulnerabilities that modern browsers don’t support it, and Adobe, (its creator), recommends that you use HTML 5 instead
  • Using EOL’d (end-of-life, meaning it’s not even getting security updates), PHP version
  • SSL Lab grade of F
  • Using Joomla 3.1.1 (released in April, 2013 – current is 3.6.5)
  • SSH exposed to public access, (why don’t you just post your root password somewhere and get it over with)
  • FreeBSD 6 (released in 2008)
  • Open ports, so many open ports…

If Giuliani is confirmed, we are completely and totally fucked on the cybersecurity front. Terrorists aren’t going to need to fly planes into buildings, or run over people with trucks. They’ll just have to sick a bunch of toasters on the government and take it all down. All this talk about defeating ISIS, and with a Giuliani confirmation, they’ll be handed the tool they’re literally most effective at using, and winning with. Good job guys, good fucking job!


Respond

Leave a Reply

Write a Comment

Comment

Your email address will not be published. Required fields are marked *