I don't think I'm suppose to be able to access this

Toggle sidebar Toggle sidebar
Red Squirrel

Red Squirrel

No Lifer
May 24, 2003
71,117
13,998
126
www.anyf.ca
https://webmail.trumporg.com/owa/

I'm not saying I tried to login as administrator, but I can confirm the password Trump2016! is not valid.

I guess Hillary is not the only candidate that has email problems. :p

At least it uses HTTPS, so there's that, I suppose. But probably a bad idea to expose something like that to the outside. That's what VPN is for.
 
C

Crono

Lifer
Aug 8, 2001
23,720
1,503
136
Isn't that just the frontend to Outlook 365/OWA? What would anyone be able to do with that, without knowing logins? Though I guess it might be useful knowing that they use it. A lot of businesses and organizations have switched over to cloud mail, though.

I hope 2FA is enabled, at least. For my 365 email address at work (they just recently switched from exchange to 365, actually) you need to be using VPN to access it from an external network. The login portal is public facing just like that site, so my guess is it's not uncommon.
 
Last edited:
Red Squirrel

Red Squirrel

No Lifer
May 24, 2003
71,117
13,998
126
www.anyf.ca
There could easily be some kind of exploit to bypass logins, for example, or simply brute force them. You could probably easily find out usernames from email addresses posted on the site too. So like some lower end user like a secretary might use the month and year as the login or something. Essentially something like this should only be accessible by VPN or at least some kind of RSA SecurID front end that gives you access to a reverse proxy to it or something.
 
C

Crono

Lifer
Aug 8, 2001
23,720
1,503
136
Newbian said:
It's all fun and games until trump comes for your maple syrup.
Click to expand...

I'd fully support an undeclared war on Canada if it means a lifetime supply of grade B maple syrup for me. Our drones don't even have to go that far...

I'm reporting Red Squirrel to Trump. Clearly that's some kind of hacker name, with a terrorist-y avatar, and enough evidence to say the Canadians are hacking us. Forget the Russians, it's the socialists on our northern border illegally climbing over our firewall. Invade Canada! Take out their tank! Let the streets overflow with maple syrup!

Byaaaaaaaa!
 
Last edited:
purbeast0

purbeast0

No Lifer
Sep 13, 2001
53,731
6,607
126
Red Squirrel said:
There could easily be some kind of exploit to bypass logins, for example, or simply brute force them. You could probably easily find out usernames from email addresses posted on the site too. So like some lower end user like a secretary might use the month and year as the login or something. Essentially something like this should only be accessible by VPN or at least some kind of RSA SecurID front end that gives you access to a reverse proxy to it or something.
Click to expand...

LOL @ "easily". Yeah good luck with that. Let us know how "easy" it is to hack into there.
 
JoeBleed

JoeBleed

Golden Member
Jun 27, 2000
1,408
30
91
just standard exchange web mail access aka: outlook web access. as for brute forcing access to a known e-mail, well, we use our usernames not e-mail address for access and you have to know the domain. on top of that, a few bad attempts gets you locked out. Not saying they don't use e-mail address for usernames, but they may not.
 
gorcorps

gorcorps

aka Brandon
Jul 18, 2004
30,741
456
126
Red Squirrel said:
There could easily be some kind of exploit to bypass logins, for example, or simply brute force them. You could probably easily find out usernames from email addresses posted on the site too. So like some lower end user like a secretary might use the month and year as the login or something. Essentially something like this should only be accessible by VPN or at least some kind of RSA SecurID front end that gives you access to a reverse proxy to it or something.
Click to expand...

you watch too many movies and/or TV
 
nerp

nerp

Diamond Member
Dec 31, 2005
9,865
105
106
Nobody is hacking into OWA unless it's horribly old and run on unpatched servers.
 
Red Squirrel

Red Squirrel

No Lifer
May 24, 2003
71,117
13,998
126
www.anyf.ca
gorcorps said:
you watch too many movies and/or TV
Click to expand...
Not really. If they don't keep it updated it would be full of exploits. It's a microsoft product. There are remote code execution vulnerabilities all the time. Although they have gotten better over time. But still, not really something I'd expose to the outside.

I'm not saying I could hack it, but I'm sure the Chinese or Russians could.
 
Scarpozzi

Scarpozzi

Lifer
Jun 13, 2000
26,392
1,780
126
Crono said:
I'd fully support an undeclared war on Canada if it means a lifetime supply of grade B maple syrup for me. Our drones don't even have to go that far...

I'm reporting Red Squirrel to Trump. Clearly that's some kind of hacker name, with a terrorist-y avatar, and enough evidence to say the Canadians are hacking us. Forget the Russians, it's the socialists on our northern border illegally climbing over our firewall. Invade Canada! Take out their tank! Let the streets overflow with maple syrup!

Byaaaaaaaa!
Click to expand...
I'm more afraid he's going to propose a maple syrup pipeline to the heartland. That would ruin American companies like Mrs. Butterworth's and take our jobs!
 
  • Like
Reactions: Crono
Red Squirrel

Red Squirrel

No Lifer
May 24, 2003
71,117
13,998
126
www.anyf.ca
I think we'll just re-purpose the XL pipeline for maple syrup. it's already half built anyway!

Or we can sneak maple syrup in Nestle's pipelines and gum up all their equipment for trying to take all our water.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom