Friday, June 22, 2007

Incoming Links on YouTube Expose Hundreds of FTP Passwords

youtube videos with ftp passwords

As these screenshots show, some incoming links on YouTube videos are found to contain username/passwords of FTP servers that could allow anyone to login into these servers. 

If Google doesn't fix this immediately, it could possibly become a big security issue for FTP sites whose credentials are now available in Google cache.

Earlier these YouTube links had revealed clicks on Adsense Gadgets ads. The latest issue was discovered by Rohan Pinto of konkan.tv/.

To ensure that your FTP servers are not in the YouTube database, run the following query:

site:youtube.com "clicks from ftp" your_server_name

youtube ftp server password

Reader Comments

Hi Amit,

small correction...

I did not "discover" this.. I stumbled on this discussion thread a few days ago, and figured it out.. There are tons of folks claiming that they "discovered" it.. and I do not want to be part of that group.


I believe that it was "discovered" by one of the following:
Ronald van den Heetkamp
Robert Hansen
Christian Matthies
Jeremiah Grossman

Written on 23/6/07 7:52 AM


About Digital Inspiration

An award-winning technology site with how-to guides, tips and video tutorials on all things related to personal technology, software and web apps.

Email: amit@labnol.org

Popular Topics

Get news on the go

mobile

Digital Inspiration is a mobile-friendly website. Simply bookmark labnol.org in your mobile browser for free access anytime, anywhere.

© 2004-2012 Digital Inspiration. The content is copyrighted to Amit Agarwal and may not be reproduced on other websites.

Terms | Sitemap

Add my blog to Google Reader or iGoogle Subscribe to my YouTube Channel Subscribe to my RSS Feed Follow me on Twitter Like my Facebook Page