executive stats article in avn
 

http://www.avnonline.com/index.php?P...tent_ID=231409

good article

except this part

We know who this Fris character is. He came to us with holes in our system and wanted money to fix them. So in other words, he hacked us, then wanted us to pay him not to make the hacks public,? Shaw says.

i never came to you with es holes.

i have never wanted money from any company in the adult industry, i have never worked for any company, or asked too, i have always been solo. people have offered to hire me.

show me the definition of a hack.

you obviously dont know it

brute force, running an exploit, do you know anything about computers brad?

and i wanted you to pay me not to make it public?, when did this happen?

i have never made any communictation with any of your staff other than greg at the montreal show. and it was for a merely 10 mins.

i really do think greg is professional, you could learn a lot from him.

anyways that is my take on the situation.

flame away all you want.

ss is out of canadas reach you should know that.

good luck in your future plans.

hackers... go figure :P

how much are you getting paid?

Sig spot

shut the fuck up you worthless piece of shit sigwhore...

i stand by you...you did not hack shit...you publicly exposed security flaws

while I am not sure I would have posted it on gfy first before contacting them, i think with all the shit brad shaw starts, this gave a little back to him...i probably would have done the same thing

hack the planet dude!

This is probably worthy of a first page sig spot . . . I already blew it on the original thread

actually the definition of hacking is very broad, not limited to "brute force, running an exploit"

So...

Ya talked to Greg about some work.
After realising they were not going to give you work you hit there company with a security issue and exposed it on a public board.

Nice guy...

Your a real fucken sweet heart...

i am not stupid, i would not do something on a public board if i knew it was breaking the law.

if it prompted me for a login box and i kept trying to get in, then he could complain about it.

but until brad learns a bit about the tech aspect of things he needs to know what the difference is.

but again like i said, no contact was made by shawinternet other than the 10 min conversation at the montreal show. and no money was discussed. i am not money hungry, like a lot of people

i would rather see someones system secure. if he cant accept that, thats his problem. hes gonna have to live with it.

i think he's already said repeatedly that he talked to greg about the security flaws in hopes they'd be fixed and werent.

I think he should thank you for pointing to the flaws in the program, so they could patch it.

ive seen a lot of board drama in my days.

but fris posting this, day before regs go into effect, making avn etc... well,... this is some prime grade top of the line drama here.

bookmarked and added to the classics.

Premium sig spot :thumbsup

Fris, can you hack my shit so I can get some ink in AVN?

Thanks,
newbreed

edit - I'll give you kudos in the article for your effort instead of bullshit placing blame on you.

you can stop the ass kissing, he never said anyting about hiring me. do you even get it through your thick skull? i didnt know if they were going to give me work or not. i didnt expect anything. when i goto shows i meet people. i have so much on my plate. 1 company means nothing to me.

then again. you can keep kissing ass so can get your sig space next month.

Wow thats bullshit

=-x

Yeah it kinda sucks someone points out holes in your program and you accuse him of being a hacker. Just because he found the hole doesn't mean he put it there. :upsidedow

Think happy thoughts.

OK Fris...
So Ya speak to Greg a very decent guy and decide to expose a cheap server side security flaw of a web application?

Ya knew about the security issue before hand and the professional thing to do is post the info on a public board?

Your definatly a guy that can not be trusted.
No questions asked.

Accusing you of "hacking him" on a public board is slandering you. Unless he can prove you did it, which even if you did I doubt he could do it. Sounds like you have a better case against him then he does you. I think accusing someone of hacking your system is damaging to their reputation and you could be compensaited for those damages.

Good point. :)

from what ive read it was pointed out and nothing was done or it wasnt fixed completely. theres more to this then brad losing his fucking elite code. im sure all his members arent going to enjoy the email bombs they get for farmsex because this flaw wasnt addressed as it should of been aswell as their private info such as phone and home address. how long did it take to get fixed once it hit the boards? record time, as usual.

Once again, AVN gets it wrong. Irresponsible journalism. The info available was to our own sites, not to clients of executive stats. Fris once again put his foot in his mouth. This was an siccash.com issue, a server issue, has nothing to do with ES itself.

dramaaa!

i love gfy

Bringer, you make it sound like we were told of specfic problems and did not fix them. That is flat out incorrect. We were told there were "holes" and if we secured his services, he would tell us where and they would be fixed. IMHO this was extortion. He was on our server without our permission, we never hired him.

Really surprising that many people choose to ignore holes until they're made known to the public... :disgust

Bringer Follow the story man...

"theres more to this then brad losing his fucking elite code."
No code was lost.

This was just a cheap shot server security issue, not a script compromise.
I got instructions in my own email a couple fixes is all it took and I am sure all ES clients have been notified and have been updating since late last night.

The shit does not even require a server reboot.

Get the story right.
Or try to.

Fris if all you did was find the stuff and you didnt hack them and he said this about me:


?This was not an ES issue. It was a server security issue that a hacker uncovered. The issue was with our server setup and has nothing to do with our clients,? he says.


We know who this Fris character is. He came to us with holes in our system and wanted money to fix them. So in other words, he hacked us, then wanted us to pay him not to make the hacks public,? Shaw says.


I would own him if he said that shit about me just for pointing out flaws with his software. not owned! but own $$$$

LOL I love how fris is characterized as a hacker. Although if i was in the same situation, I wouldn't have posted it on gfy - but Fris did nothing wrong. He didn't breach the system nor did he run any exploits to exploit a flaw. Any surfer could have stumbled upon those folders that were open to all.

thats not what im concerned about. im concerned the problem that was exploited (and i use that term very loosely) was something that should of been corrected by a security audit. id assume a company taking peoples private information would hire a private firm to do security audits to ensure privacy. i wouldnt be happy if all my private info i submitted to you in a secure session was available to anyone with a browser. you werent hacked, your server wasnt configured properly.

this wasnt an ES problem, it was a server misconfiguration. all those folders should of been password protected and why they werent is beyond me. i dont run ES and i have protected folders, its not rocket science.

sig, blog traffic, profitable, juicy, thank you!

So which is it ???

THIS:
OR THIS:

:upsidedow :warning

Correct. And the way AVN presented it is irresponsible journalism and I expect a retraction.

Perhaps some installations were done securely while some might not have been.
Wouldnt hurt to run the steps at any rate just in case.

One of the best hacker movies ever!

"HACKERS"

you have pointed this out 2 them ? right..

Well then sue him for lying about you in the article....