[Chugalug] OT: Chattanooga Technology Council

Stephen Haywood stephen at averagesecurityguy.info
Tue Aug 13 15:42:33 UTC 2013


You may want to talk to them about locking down http://chattanoogatechnologycouncil.org/xmlrpc.php if they are not using it.

--
Stephen Haywood
Owner, ASG Consulting
CISSP, GSEC, OSCP
423.305.3700
stephen at averagesecurityguy.info




On Aug 13, 2013, at 11:35 AM, David White <dwrudy at gmail.com> wrote:

> I'll email both the interim director as well as the assistant director, both of whom I've talked with in the past.
> 
> Good find. And geeze - that's bad. I just found that page on their website in less than 10 seconds too.
> 
> - David
> 
> 
> On Tue, Aug 13, 2013 at 11:10 AM, Stephen Haywood <stephen at averagesecurityguy.info> wrote:
> If any of you folks have contacts at the Chattanooga Technology Council you may want to let them know about a problem with their "join" page. Credit card forms should only be used on HTTPS pages.
> 
> <PastedGraphic-1.png>
> --
> Stephen Haywood
> Owner, ASG Consulting
> CISSP, GSEC, OSCP
> 423.305.3700
> stephen at averagesecurityguy.info
> 
> 
> 
> 
> 
> _______________________________________________
> Chugalug mailing list
> Chugalug at chugalug.org
> http://chugalug.org/cgi-bin/mailman/listinfo/chugalug
> 
> 
> 
> 
> -- 
> David White
> Founder & CEO
> 
> CENTS 
> Computing, Equipping, Networking, Training & Supporting 
> Nonprofit Organizations Worldwide
> http://developCENTS.com
> 423-693-4234
> _______________________________________________
> Chugalug mailing list
> Chugalug at chugalug.org
> http://chugalug.org/cgi-bin/mailman/listinfo/chugalug

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://chugalug.org/pipermail/chugalug/attachments/20130813/d74fb54a/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 841 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://chugalug.org/pipermail/chugalug/attachments/20130813/d74fb54a/attachment.pgp>


More information about the Chugalug mailing list