Facebook’s /intern/testdata tool shown with the default password n0t3st
source link: https://philippeharewood.com/facebooks-intern-testdata-tool-shown-with-the-default-password-n0t3st/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Facebook’s /intern/testdata tool shown with the default password n0t3st
One of Facebook’s contractors left a video up that showed the details of /intern/testdata tool inclusive of the default password used to create accounts.
“The video was deleted because I reached out to the relevant person who took the video down. While the video itself does show some internal tooling and the default password of test users we do not believe this resulting in a significant security risk that would qualify under the Whitehat program. The internal tooling shown was not (highly) sensitive, and we have additional protections on test users to make sure that knowing the default password won’t allow you to login as those accounts. While we appreciate the report I will mark it as informative because of my explanation above and wish you luck in finding bugs in the future.”
Timeline
Jan 18, 2021 – Report sent
Jan 19, 2021 – Video removed
Jan 19, 2021 – Report closed as informative by Facebook
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK