Learn More
Resend Email
22
Parzi
6y

I """""accidentally"""'" found some security holes in my school's Windows public computer setup.

Every student and teacher has a personal Active Directory, obviously they should be able to only see their own right?
oh wait the directory up button in explorer shows me all of them and I have r/w access to teacher and student ADs.

That's cool.

Also, the command prompt, Run prompt ad Explorer path bar are disabled...

...but batch scripts work.

Sweet.

Surely I can't do something dumb like--- oh, regedit's blocked but not the reg command.

They use the-- WHY IS GPEDIT NOT BLOCKED

Well what the fuck.

(All of this was responsibly handled by emailing the tech department. They have an email just for this! ...got a bounceback "this person is no longer employed at XYZ School.")

rant

incompetechs

why is my life

school
Favorite
Ranter
Comments
  • 8
    6y
    😂
    You made a best-effort to get it resolved.
    Feel free to profit!
  • 5
    6y
    Our school's similar: No cmd but bash and youtube is blocked but the blocker ignores all https traffic. More annoying is the fact that more or less all ports except the most important ones like 90, 443 and 22 are disabled.
  • 2
    6y
    (Of course I meant port 80 not 90, silly me)
  • 4
    6y
    In my high school we didn’t even have proper profiles. We had student and teacher accounts on all computers. So, obviously we logged in as administrator (magic), gave ourselves admin rights, then demoted everyone else, including the administrator. The school also had one local server with a crazy amount of shit being visible to anyone on network (without altering privileges). Confidential data, staff party photos, pirated software, you name it. We even found a document with the current WiFi password which was the holy grail to us. We were kings back in the days.
  • 2
    6y
    @Conrad you know once during a Hackathon we had some sort of source control server (our team made) on a raspberry pi where we put our code that we already worked on. Couldn't access it because port was blocked. We requested a port open, and after an hour we got access :/
  • 2
    6y
    Our schools system isn't better either. Our Administrator blocks every Javascript (which we're programing with) but allows all kinds of Autoruns
Related Rants
devRant © 2021 Hexical Labs LLC
Privacy Policy  |  Terms of Service
Add Comment