Search for Passwords with Google搜索密码与Google
Google is an extremely powerful search engine, in the sense that it will crawl, grab and remember whatever web pages and files that its crawlers come across in the Internet, no matter whether they’re intended for public viewing. Google是一个非常强大的搜索引擎,在意识,它将检索,抓斗,并记得什么网页和文件,其抓取工具碰到在互联网上,不管他们的用意,供市民浏览。 Beside, Google also provides powerful search filters and operators to return accurate search results.旁边, Google也提供了强大的搜索过滤器和经营者返回精确的搜索结果。 Thus you can find many interesting results using Google, such as unprotected因此,你可以找到许多有趣的结果,使用Google ,例如未受保护的 live webcam生活的Webcam . 。
You can also search for passwords which accidentally expose in various files by using Google, especially the unprotected or improperly protected password information in plain text format that resides on a web server.您还可以搜寻密码意外暴露在各种文件使用Google ,尤其是未受保护的或不当保护的密码信息以纯文本格式驻留在Web服务器上。 Most serious security leak happens on misconfigured web server that shows directory listing or expose PHP code.最严重的安全漏洞发生在错误的Web伺服器,显示目录清单或揭露的PHP代码。 Typical example is plain text passwords used by FrontPage, a simple Web publishing software provided by Microsoft which has now been discontinued.典型的例子是,纯文本的密码,用FrontPage中,一个简单的Web出版软件所提供的微软现在已被终止。 Nevertheless, somebody out there in the Internet is still using FrontPage, and continue to expose the passwords to the world via Google.不过,有人指出有在互联网上仍然是使用FrontPage ,并继续揭露的密码,向世界透过Google 。 Try the following search queries to search for FrontPage password stored in service.pwd file.尝试以下的搜索查询,以搜索为FrontPage的密码存放在service.pwd档案。
Other examples include其他例子包括 password.log and和 password.list , .inc files with PHP code that contain unencrypted usernames, passwords, and addresses for the databases authentication, usually MySQL ( , 。公司的档案与PHP代码包含未加密的用户名,密码,及地址的数据库验证,通常的MySQL ( filetype:inc intext:mysql_connect文件类型:公司intext : mysql_connect ), config.php used by hackers to hack phpBB forums ( ) , config.php所用的黑客入侵phpbb论坛( ext:php intext:”$dbms”"$dbhost”"$dbuser”"$dbpasswd”"$table_prefix”"phpbb_installed”分机: PHP的intext : “元数据库管理系统” , “元dbhost ” , “元dbuser ” , “元dbpasswd ” , “元table_prefix ” , “ phpbb_installed ” ) and many many more. )和很多更多。 GHDB provides a ghdb提供了一个 long list长长的名单 of possible passwords that can be found via Google.可能的密码,可以发现,通过Google 。
So, remember to check for your web server vulnerability to fix any security issue, threats and possible leakage.因此,记得要检查您的Web服务器的脆弱性修正任何安全问题,威胁和可能的泄漏。 If you do not intend to publish the information to the Web and it’s for internal viewing only, use robots.txt to exclude all crawling and spidering by search engines.如果你不打算公布的资料,到Web和它的内部只浏览,使用robots.txt排除所有抓取和spidering搜索引擎。
IMPORTANT : This is a machine translated page which is provided "as is" without warranty. 重要说明 :这是一个机器翻译网页是“按原样”提供的担保。 Machine translation may be difficult to understand.机器翻译可能很难理解。 Please refer to请参阅 original English article英文原版的文章 whenever possible.只要有可能。
Share and contribute or get technical support and help at分享和贡献,或取得技术的支持和帮助,在 My Digital Life Forums 我的数字生活论坛 . 。
Related Articles相关文章
- Search for Torrents with Google搜索急流与Google
- Nokia Handsets Featuring Google Search诺基亚手机具有Google搜索
- Google Funny Search Trick on Chuck Norris有趣的Google搜寻的伎俩就夹头诺里斯
- Google Converter Google的转换
- Dell Sells Google戴尔公司销售的Google
- Google Hacks Free Download to Search Music, Book, Video, Proxy, Lyric, Font and More Google的骇客免费下载搜索,音乐,出版,视频,代理,抒情,字体和更
- Which Search Engine is the Best and Most Relevant?搜索引擎是最好的和最相关的呢?
- Google Universal Search Google的通用搜索
- New Package on Site Search Engines Offered by Google新方案对网站的搜索引擎Google提供
- Windows Live Search Review by PC World的Windows Live搜索检讨PC世界
November 27th, 2007 21:45 2007年11月27日21时45分
[...] [mydigitallife] Popularity: 5% [...] [ … … mydigitallife ]人气: 5 % [ … … ]
December 5th, 2007 06:14 2007年12月5日6时14分
[...] fonte [mydigitallife] [...] [ … … ]来源[ mydigitallife ] [ … … ]
May 4th, 2008 02:43 2008年5月4日2时43分
and began about accomplish reaction When and saw I know by year.并开始约完成反应时,看到我知道今年。 by year.由年。 in a hollow stretching reaction在一个空心伸展反应