Ride-sharing service subpoenas GitHub for IP addresses that accessed security key.
Read the whole story
Read the whole story
In major goof, Uber stored sensitive database key on public GitHub page
- Thread starter JournalBot
- Start date
I am not a fan of cloud repositories in the first place, so github for anything other than open source projects would be a total no-no for me, but I can see how you could do this very easily if you make just one mistake with where you put your keys relative to the source code.
Another possibility is that they originally maintained their source in-house so weren't worried about the key being in their repo, and then messed up a cloud migration.
Another possibility is that they originally maintained their source in-house so weren't worried about the key being in their repo, and then messed up a cloud migration.
Upvote
17
(19
/
-2)
- Status