Its been 1 month and still no reply from my university IT department after i inforned them the login was transmitting usernames and passwords unencrypted over http and that the password field was case-insensitive for some fucking reason.

Might have to break out the sniffer and setup a script to automatically email them different students account details until they fix it, i should cc the dean 😂

  • 5
    Its impossible for me to prevent my own account crom being hacked if they refuse to fix it, i doubt im the only one who has noticed on campus
  • 4
    I agree with @ignuit , they would consider you hacked the system (even though it is network) and there will be hell to pay.. 😪😪
  • 2
    My university does that as well, the reasoning they gave is "the students don't change their default password anyway, so no rush." Been this way for at least 3 years now 🙄
  • 1
    My uni has a broken https implementation and sqlinjection vulnerabilities.

    Their excuse: "There's no financial data so no need to fix"

    Ps. I stopped caring about them for a while now.
  • 0
    ggwp no re
  • 0
    Id just simply refuse to use their system as long as its not fixed. I can be very stubborn
  • 1
    Good luck passing your exams
  • 0
    @simpleJack i skipped english exam because i refuse to speak english to people who is danish just like me
Add Comment