Google's new Code Search: Some of your db passwords are belong to us

Share: Email Story Twitter Facebook Stumbleupon Add to Any
by the source | October 6, 2006 at 11:45 am
483 views | 0 Recommendations | 0 comments
Google opened up a new search sevice called Google Code Search today. The new search allows you to search through a huge index of code that the Google search engine has crawled over the years.

Being the curious beings we are, a friend of mine and I immediately started searching for passwords to see just how much Google was indexing. It didn’t turn up much in the way of anything “secret” until we refined our search to just wp-config files (the file that contains the database connection information for Wordpress installs).

That worked. Since Google Code Search actually indexes the contents of compressed files like ZIP and TARBALL files, we were able to find copies of people’s wp-config files and several contained usernames and passwords.

Advertisement
Share: email story | add to any | | facebook | stumbleupon

Comments (0)

This story was created over 3 months ago, the comment thread is now closed.

in , , ,

closeSign in to NowPublic

Not a member?

JoinIt's free!

is reporting from
Member
NP Rank: