Feeds

back to article Mensch pal Bozier defends Menshn security, dubs critics 'snippy geeks'

The launch of a Twitter-like messaging service co-founded by UK politician Louise Mensch on Sunday has been accompanied by a huge security flap. According to users who sent in complaints, Menshn.com allegedly harboured a variety of security flaws. Most glaring of these, one user insisted, was an alleged failure by the site – at …

COMMENTS

This topic is closed for new posts.

Page:

g e
Silver badge
Facepalm

Come 'n 'ave a go if you think y'er 'ard enuff

Did it read like that to anyone else?

They're gonna be offline by the weekend methinks.

19
1
Bronze badge

Re: Come 'n 'ave a go if you think y'er 'ard enuff

Doesn't appear to be online at present.

Still, never mind; I was only visiting to pick up SQL tips.

5
0
Bronze badge
FAIL

Re: Come 'n 'ave a go if you think y'er 'ard enuff

Each page load seems to fire off way too many HTTP requests, so they're probably DDoSing themselves.

2
0
Bronze badge
Joke

What's the point?

If anything you write disappears after a week, you might as well be posting comments under ephemeral articles on a news web site... wait a m

17
0
Facepalm

Bozio

Apart from the fact that he reads like an arrogant MBA pseudo-geek who can't remember what side of the Atlantic he's on, I'm betting he wasn't even born when his 'vision' of an online community first went live.

Chatrooms with preset, premoderated topics; comments deleted after a week; 'promised' free of trolls and spam... it's Micronet 800 folks!

16
0
FAIL

Re: Bozio

Louise Mensch is a household name in the UK. Leveraging her trendy brand to entice youngsters to a new niche social network should be quite easy, and Menshn should be an enormous success - security hiccups or not.

Wait a minute, did I say Louise Mensch? I was thinking of Lady Gaga. Forget what I said; no-one cares who she is and what she does.

22
0
Bronze badge
WTF?

Re: Louise Mensch - who??

I've never fucking heard of her?!

2
0

Just visited their website. It seems really slow.

4
0
Silver badge
Joke

Possibly because it has been taken over by spambots now busily spamming!

4
0
Anonymous Coward

"Oops! Google Chrome could not connect to menshn.com"

Seems totally unusable. Somebody must have done SQL injection on it and its toy DB is in a death spiral.

3
0

Wouldn't surprise me. Or their servers are connected to a dial up modem.

0
0
Anonymous Coward

"Oops! Google Chrome could not connect to menshn.com"

Yep, still down

3
0
Silver badge
Devil

Re: "Oops! Google Chrome could not connect to menshn.com"

Oo- it's back- now reports:- "Your browser is too modern- please download IE6 or earlier."

4
0
Silver badge
Joke

Oh, the irony

Tory MP has slow website.

0
0
Silver badge

Re: "Oops! Google Chrome could not connect to menshn.com"

It's up and down like a whores knickers.

I'll bet it's some combination of the reddit/slashdot thing coupled with the Streisand effect probably with a few /b/tards thrown in for good measure.

0
0
Silver badge

Re: "Oops! Google Chrome could not connect to menshn.com"

Times a thousand.

0
0

Re: "Oops! Google Chrome could not connect to menshn.com"

Woo! It's back up! And totally not worth the fucking effort.

Seriously, I've designed better websites by sneezing, that really us the most user unfriendly bollocks I've seen in a long time.

0
0
Anonymous Coward

The real security problem is -

- how stupid you'd need to be to sign up to this site.

Unless of course, you use a fake ID to sign up and post off-message comments - not that I advocate any such thing.

5
0
Anonymous Coward

Re: The real security problem is -

Disposable email - Check

Tor Browser - Check

Goastse - Check

Looks like you're all ready to raid :) Who said politics wasn't fun?

5
0
Silver badge
Trollface

Little 4 year old Bobby Tables writes his own SQL!

Ok, who puts 'https' into quotes when issuing statements about security?

6
1

Re: Little 4 year old Bobby Tables writes his own SQL!

The same people that make quotation mark gestures with their fingers when they're talking.

I believe these people are the 17th group in line for the firing squad when the revolution comes, although I don't have my list handy right now so I can't check.

6
1
Anonymous Coward

Re: Little 4 year old Bobby Tables writes his own SQL!

> 17th group in line for the firing squad

Yep - their last words being, 'I suppose you're going to "shoot me" now'.

14
0

Re: Little 4 year old Bobby Tables writes his own SQL!

Luckily for the rest of us, the first in line for the squad are the people who think firing squads for various demographics is a good idea.

4
2
Silver badge

Re: Little 4 year old Bobby Tables writes his own SQL!

So, not the Sirius Cybernetics Corporation marketing division then?

1
0
Coat

Re: Little 4 year old Bobby Tables writes his own SQL!

No, the first in line are the people who want to be, or are, in said firing squad.

0
0
Silver badge

+ + + RECURSION DETECTED + + + REDO FROM START + + +

1
0
Facepalm

I know

I was trying to avoid telegraphing the gag

0
0
Silver badge

politics

You can tell the guy is a politicean. I mean, he continually says that there are no problems despite all the warnings that there are, any time something is found he pounces on it to deny it before its even common knowledge.

Everything he's doing is politics 101.

10
0
Joke

Re: politics

How can you tell a politician is lying?

Their lips move.

1
0
Bronze badge

Re: politics

I have an easier way. He's a politician. It's basically something that he perceives to be his job.

I don't particularly care what party they belong to, I have a healthy distrust of anyone who wants to be a politician or refers to themselves as one. It's like the line from The Thin Blue Line about gun ownership. A good enough reason to stop someone becoming a politician should be that they WANT to be one.

8
0
Silver badge

Re: politics

"A good enough reason to stop someone becoming a politician should be that they WANT to be one."

I agree completely. They are supposed to be there to represent us, the normal people. Yet wanting power makes them abnormal, therefore unsuitable for the role.

I know it's a gross simplification, but IMHO it fits.

1
0
Vic
Silver badge

Re: politics

> A good enough reason to stop someone becoming a politician should be that they WANT to be one.

Not *entirely*...

A few years back, I was toying with the idea of standing for Parliament. Not because I want to be an MP - I just want rid of the incumbent numbnuts.

Sadly, I live in a "safe seat" area :-(

Vic.

0
0
Bronze badge
Devil

Penshn

Hopefully she's invested her entire penshn. Auto-refreshing the site every minute could be a fine way of liberating some politician's ill gotten gains if they're running it on AWS.

"Politicians are not born, they are excreted" -Marcus Tullius Cicero

2
0
FAIL

Rule number 1 of managing vulnerabilities:

Don't call someone with an exploit on your site a 'snippy geek'.

13
0
Silver badge
Flame

A little microcosm of why the UK is where it is today

So, a technical glitch is found with a website, requiring analysis and comment by a technical expert, but instead we have a floor-crossing politician being quoted as the answer ?

How many people, on being rushed to A&E would be happy to see Andrew Lansley scubbed up saying "there is no problem" ?

How about next time the reg needs a political analysis, it asks googles server team ?

7
0
Silver badge
FAIL

WOW

It only took two and half minuets to load the homepage - amazing work guys!

Also, I know finding sensible urls is hard these days but just randomly mashing the keyboard to make up a website name is a bit lame is you ask me!

2
0
FAIL

Deleted after 7 days?

I'm not sure Theresa May would be very happy having all that communications data deleted before MI5 have a chance to look for any funny business.

6
0
Anonymous Coward

More importantly,

why do we need yet another social network?

Google+ is more than enough (or Facebook and Twitter, if you must).

2
1
FAIL

Unfounded vulnerabilities? I think not

at least 3 people I know notified them of issues. I notified them about the clear text passwords on Friday night. It's documented here http://www.securityg33k.com/blog/?p=595 . You guys decide what's unfounded and what isn't

1
1
FAIL

site down

Has someone been playing with that python Hulk script again ??

0
0

Re: site down

Typical, now its back.

0
0
Silver badge
FAIL

Re: site down

14:43 it's down again.

I wonder if this hasn't been stolen from a future "In The Thick Of It" script? You can just imagine Malcolm Tucker and his adversary setting up rival social networks...

The icon is for the bozos who set this up.

2
0
Silver badge

Re: site down

I'm not sure that will even be necessary. It looks like it's PHP + MySQL so, unless there's connection pooling and a good DBA around, max connections will be an issue pretty quickly and someone will need to add a lot of indices by hand if they don't want queries to die the agonising death of file scans.

Ouch, and before anyone asks, this isn't hacking or DoS.

ab -n 1000 -c 10 http://www.menshn.com/

This is ApacheBench, Version 2.3 <$Revision: 655654 $>

Copyright 1996 Adam Twiss, Zeus Technology Ltd, http://www.zeustech.net/

Licensed to The Apache Software Foundation, http://www.apache.org/

Benchmarking www.menshn.com (be patient)

apr_socket_recv: Operation timed out (60)

Total of 33 requests completed

2
0
Silver badge
Thumb Up

You can just imagine Malcolm Tucker and his adversary setting up rival social networks.

hehehe - Logs on to Twucker.com to post a "twuck"

The only social network where offensive language is #@£*ing mandatory!

7
0
Silver badge
Coat

Re: site down

So I just left a brick on the F5 key until it loads.

What? That's how you get unresponsive sites to load isn't it?

2
0
Silver badge

Re: twucker.com

Pity it isn't a real service. :-( That would be my kind of network.

Might make a summer project out of it. You can't post anything unless you've got two ticks. Fortunately, for really important stuff you can simply leak the information.

1
0
Silver badge

"Menshn is a safe, clean & secure environment."

Sounds like famous last words! Like a red rag to a script kiddy.

It's like showing an uncrackable safe to a safe cracker.

3
0
Go

Re: "Menshn is a safe, clean & secure environment."

Do 4chan/Anon etc. et al know about this stuff. I do hope so.

0
0
Anonymous Coward

I can't wait to watch this unfold

I think we need a sweepstakes for how long they will attempt to keep the site running before they give up and go home ... I'm going to be generous and give them a week :D

1
1

This post has been deleted by a moderator

Page:

This topic is closed for new posts.