Egged WiFi – security review [v. 0.2]

2012.06.28

Today review results – improvement detected! 🙂 But…

Announcement : Dear Egged Admin. I am happy  You saw my post and found it useful. As I see, all relevant mentioned there services are properly closed by IP restriction now. But there are more, as I wrote. And they are open, and SQLi\XSS\implementation vulnerable as well. I am not posting it in public, it’s bit irresponsible.

IMHO Egged should hire some professional hardening service to take care of Mako Wireless services on Egged buses. It’s nice and useful service, I am really looking forward to see it safe both for users and owner.

 

Leave a comment