Don't tell the system you want to play global thermonuclear war.
wienerschnitzel
i bet you're really sucessful with relationships!
srussell0018
Says the girl who....
:gsmile:
wienerschnitzel
careful, brah.... careful.
FuzzQi
quote:
Originally posted by ziptnf
Before going to your manager or boss and saying "yeah, I hacked the system and found these vulnerabilities", it would be useful to gather every single piece of information on the vulnerabilities into some sort of presentation or document to use to show them how to better protect themselves on a security level and a financial level. The second they hear you say "I hacked", you're ing fired. It would be better to use the phrase "I ran some tests/scripts" or "I analyzed the security level of our systems" to find the issues. Discuss the possibility for immediate fixes as well as long term goals for a more secure site. That way, they will look at you as an asset going forward rather than a troublemaker.
Or blackmail the IT manager
Looney4Clooney
quote:
Originally posted by ziptnf
But what happens when they trace your IP address to your machine name and find out that you did it without telling anybody? Then you're definitely fired.
yup. And probably fired if you tell someone as well. Unless you are indispensable which nobody is. I'm assuming he did it from home as that would be incredibly stupid unless it was his job to test the system.
But ya, don't present a ing power point presentation on a particular part of the business that is not your job especially when it indicts you for breaking company rules. I mean it all depends on the kind and size of job. But regardless of your intentions, you will be forever after labelled by management as someone that is how do you say a maverick. And they usually don't fair too well in large corporate cultures.
Just mind your own business unless the leak affects you personally.
justin
I admit to utter chaos and total defeat.
Jon_Snow
quote:
Originally posted by Looney4Clooney
yup. And probably fired if you tell someone as well. Unless you are indispensable which nobody is. I'm assuming he did it from home as that would be incredibly stupid unless it was his job to test the system.
But ya, don't present a ing power point presentation on a particular part of the business that is not your job especially when it indicts you for breaking company rules. I mean it all depends on the kind and size of job. But regardless of your intentions, you will be forever after labelled by management as someone that is how do you say a maverick. And they usually don't fair too well in large corporate cultures.
Sorry, Goose but it's time to buzz the tower...
Dj Nacht
I would do nothing, unless you are somehow part of the IT team.
I hope you used a proxy to run this vulnerability scan.
Speaking of hacking, some has been running some sort of automated brute force attack on my remote desktop port for the past week. I got fed up of watching all these stupid username attempts in my windows log and decided to change the default port. The was using a proxies from all over the world, mostly Asian.
ziptnf
quote:
Originally posted by Looney4Clooney
But ya, don't present a ing power point presentation on a particular part of the business that is not your job especially when it indicts you for breaking company rules. I mean it all depends on the kind and size of job. But regardless of your intentions, you will be forever after labelled by management as someone that is how do you say a maverick. And they usually don't fair too well in large corporate cultures.
Just mind your own business unless the leak affects you personally.
The difference is that the OP cares about his company and wants to help them. And you're also misinterpreting what I mean by coming to the managers with information. If you show up with a fully-documented problem/cause/solution where you detail the issue, how to fix it, and what the business impact could be, the management will embrace it, and not label you as a "maverick" or whatever dumb ing you were just saying. Minding your own business in this situation is the last thing you want to do. Own up to what you did with full disclosure and you won't get in trouble. I know that at my company, something like this would be noted and rewarded, because they thrive on innovation and a solid IT foundation. I'm sure his company is similar.
