How I Found Norm Coleman's Website Database in 2 Minutes

Leaving directory browsing enabled and not restricting access using host headers bad! Hosting the database on the front end web server?! Really bad!! Getting caught by Adria Richards and getting exposed on YouTube priceless!!!

wow.. that is why we have public folders and private folders.. never the twain shall meet. Coleman must have a crack webstaff. honestly that is the problem with interns. they are cheap to have around but can sometimes be a liability.

In anycase nice work on the directory play.. You have l337 skillz... :-) Help I have been haxxored by libruls..

LOL! Wanna bet he went as cheap as possible on his site. You get what you pay for.

hehehehe thats really funny i wish i could see something like that in real life instead of just on a video.. seems like it would be better in person.

Well that's pretty much it for Norm Coleman now. If he thinks he can get anywhere in politics now, He is out of his mind!! If he appeals to higher courts after this case. He is not going to be able to raise enough money because people will not feel secure on his website. All he can really be at this point is a tool for the Republican party for keeping the Democrats from having 59 seats in the Senate.

Powerline is blasting out that Lefty Hackers are responsible for compromising Coleman's website and donor data.

Be ready for attacks Adria.

What Adria did is so simple it's scary. Dropping an IP address into a browser search bar is very basic. Opening publicly visible folders is as simple in a browser as it is on your desktop.

Coleman's site could have set permissions to prevent exposure, takes all of 30 sec.

If Coleman knew, indict him for this too

Saving the Screenshots was important.

Simonesdad2007,

I am already streaming live! Every weekday at 3:30pm CST check me out on AskAdria. You can get to it from any of my websites. (sorry, can't put website addresses into comments at YouTube)

Adria,

Good work by you! Have you ever considered streaming live on your site? You are a rising talent. I may have an affordable solution for you but I really wanted to just give you kudos.

History is replete with examples of human error (or stupidity) compromising the most secret information.... This error (on the part of the Colemanforsenate website) adds to that long list.

Thanks for the insight on your discovery. Looking forward to your Livestream program.

Yes, we must look to our past and really embrace how much time we could save by learning from mistakes others have already made.

In IT, I think a lot of guys find it hard to admit they've made a mistake and ask for help...which can lead to a Senator's database being comprimised