French ISP Offers to Block File-Sharing, Exposes Users to Attack

June 15, 2010 -

In response to the implementation of France’s “Hadopi” or three-strikes law, which targets illegal file sharers, a French ISP began offering its customers a service that would block file-sharing on their connections, but the software came with its own problems.

Orange was the ISP offering the service, for the small price of two Euros per month, and it was intended to allow users to “control the activity of computers connected to your internet line” by blocking access to an unknown series of blacklisted sites and addresses.

Unfortunately though, according to Torrent Freak, the Windows-only software, as detailed by a techie named Bluetouff, communicated with a public server that still had the default username and password of admin/admin. Oops.

Torrent Freak that it was:

... informed that people have accessed the server and have discovered that it’s possible to send malware to anyone using the software which makes a bit of a joke out of Orange when it claims: “The software runs in the background to ensure your safety without disrupting the important tasks that you perform”

Also, in an additional twist, the former French Minister of Culture, Christine Albanel, is now employed at orange as Executive of Communication.


Comments

Re: French ISP Offers to Block File-Sharing, Exposes Users ...

How do people pull off stupid stuff like this? When I load Windows server applications I dont even use the local service account as the service account, I make a unique user for the services just so this kind of stupidity can not leveraged by a malicious user.

Sorry but this is security 101 stuff. The person who loaded this software needs to be terminated.

Re: French ISP Offers to Block File-Sharing, Exposes Users ...

 I am not following how this would make a differnce in this case.  It sounds like the sever application itself had the default username and password, so creating a unique user on the server would have no impact on the hole.

On the client side, I doubt most users are going to build a jail for a service that their ISP probably tells them to install via 'double click setup and never worry again'.

Re: French ISP Offers to Block File-Sharing, Exposes Users ...

he said that he creates a customized account and uses that as the administrator in place of the default account, essentially replacing it.

 
Forgot your password?
Username :
Password :

Poll

Did Microsoft pay too much ($2.5 billion) for Minecraft developer Mojang?:

Shout box

You're not permitted to post shouts.
TechnogeekMy third "dart" wound up hitting a Chinese website for soccer scores, and the fourth hit Pokemon.com. Not one of those had anything to do with white guys getting harassed because they're white guys.09/19/2014 - 8:56pm
TechnogeekFor the record, I actually tried "throwing a dart at the Internet", or at least approximating it as best I could by zooming in at random spots on internet-map.net. First hit was a perfume seller, and then some sort of insurance spammer.09/19/2014 - 8:56pm
Technogeek"While you could throw a dart at the internet and find a site where Gamers in General are being harassed, doxxed, hacked, just because they are being perceived as white males." http://www.youtube.com/watch?v=FopyRHHlt3M09/19/2014 - 8:47pm
Andrew EisenSarkeesian and Quinn continue to get harassed and attacked (with the majority of said harassment and attacks being about their gender) and so, the story stays in the headlines. If Wolfe gets swatted again, it will be in the news again.09/19/2014 - 6:56pm
Andrew EisenYou mean Wesley Wolfe? The swatting appeared to be over his DMCA takedown, not due to his color or gender.09/19/2014 - 6:53pm
ConsterSo Sleaker, what's the sand like?09/19/2014 - 6:53pm
quiknkold@CraigR. Spreading Misandry is not going to kill Misogyny. Its just going to fuel it. half the people supporting that arguement are mysoginists themselves. They just dont know it.09/19/2014 - 6:51pm
Sleaker@CraigR - there's nothing to get over. There's no issue here until someone does an actual study on harassment rates.09/19/2014 - 6:48pm
quiknkoldWe never said Gamers were the only victims. Yes, Anita and Zoe got a bad rap. Yes, Zoe's ex was way out of line. Do I disagree with them? Depends on the arguement. Did they deserve what happened to them? Hell Effing No.09/19/2014 - 6:48pm
Sleakerbut news outlets have a tendency to blow up and sensationalize it if the person can be desrcibed as a minority, maybe because it gets the hits. How long were the 2 recent swattings in the news for? 1 was a white male developer....09/19/2014 - 6:47pm
Craig R.Get over it.09/19/2014 - 6:46pm
Craig R.Gamers are just lucky that their behavior wasn't brought to attention of everybody else sooner, and gamers are pissy about that09/19/2014 - 6:46pm
SleakerIn fact, just because a few female developers every year get harassed doesn't make it systematic. As a whole developers are harassed by people.. Swatted, etc.09/19/2014 - 6:46pm
Craig R.And if you don't think misogyny and sexism is widespread, then you're living with your head buried in the sand09/19/2014 - 6:45pm
Craig R.Apparently it's the gamers who are the only victims from GamerGate09/19/2014 - 6:44pm
Sleaker@AE - 1 person getting harassed is a problem. But just because 1 person gets harassed for being a female developer doesn't mean it's a systematic problem or indicative of a whole demographic.09/19/2014 - 6:44pm
Andrew EisenI don't believe anyone said or even remotely implied that harassing anyone was okay.09/19/2014 - 6:41pm
quiknkoldGeneral are being harassed, doxxed, hacked, just because they are being perceived as white males. And what about the White Males who are victims. Its ok to harass them? Anita Sarkeesian gets a bomb threat yeah, but what about the others.09/19/2014 - 6:36pm
quiknkoldwhat about all the gamers who are being harrassed, Andrew. Why does it have to be just about the women in the industry. We have 2 women, and only a handful of accounts recorded. While you could throw a dart at the internet and find a site where Gamers in09/19/2014 - 6:35pm
Andrew EisenOkay, you're talking specifically about harassment of women in the industry. So... how many (or what percentage of) women have to be harassed before you'd consider it a problem?09/19/2014 - 6:27pm
 

Be Heard - Contact Your Politician