5
Votes
I guess ManyEyes™ didn’t catch this one in time.
“It seems their customer view application was used as the entry point. This is where the attackers were able to list the internal databases, tables and password dump.”
“Some of the findings are pretty bad, like the password used by MySQL’s Director of Product Management, it is only 4 numbers long. Multiple admin passwords for blogs.mysql.com were also posted.”
Comments
ManyEyesLookingAtTheCode™ is yet another urban legend that doesn’t reflect reality, like the one that says that Toyota cars can go on forever without maintenance, as long as you change the oil frequently enough.
Reality is of course much different. There are barely enough eyes to fix gaping bugs in open source projects and add features (much less nitpick the code for vulnerabilities) and any car will fail from spark plug and oil filter failure if not maintained.
I can’t believe there are serious companies and academics who bring up the ManyEyesLookingAtTheCode™ argument as a valid point. But there are.
You must be signed in to leave comments.