One week after our first paper, Bull still have exactly the same problem on other servers...

Bull had over reacted: " Only one of the servers was accessible during one short period of time. We recognize the incident but there was human error and this is inevitable in any company".

More, the spokeswoman for Bull told the online press that the company "had launched an audit to determine how the error (at the origin of the fault) could occur" and called its customers "to explain the situation".

We are a bit tired with this history of Bull. It is not really funny anymore. They are insincere and one will not be able to change them. It is life... Sad world... Bah...

On the other hand, one would like to know how far their "audit" went. Of course, Kitetoa, as any person having worked on a Lotus-Domino server could give, in one stopwatch minute, the answer to the questions that will not fail to be put in this audit. But nobody asked us anything. We however wondered ourselves about the seriousness of this audit... One audit of this kind should clarify some things. The first one, of course, is that the hierarchy of Bull had consulted these pages and knew, of course, that they were in free access on the Net. Or else, the hierarchy must change and leave that kind of job. Or, get aware of these technologies. One will thus punish with same severity the hierarchy of Bull and in particular the commercial guys which were to be fond of these pages, that the poor boy who forgot to modify the rights on this "directory"... Moreover, this audit will push Bull to monitor all the Web servers of the company. And because with this human error they learned something, they must have been looking very carefully at some large servers they have... Without any doubt. I mean... they must have, isn't that right?

Well...obviously not...

Hey! Don’t piss off Bull please!!! What we show you here is absolutely not a serious problem and the server was in this situation for only one and a half minute last night. Well, that is what they will say...

Here thus a nice image (have fun):

For your information, in the United Kingdom, www.integris.co.uk = www.bull.co.uk = www.eyconsortium.co.uk (a consortium between Ernst & Young and Bull...)

Here some other images.

Bull in the United Kingdom: small actions of the administrator on the server
Bull server in the United Kingdom: statistics of the server
Bull server in the United Kingdom: definitely, they really are fans of IBM
Bull in the United Kingdom: what's in this server?
Bull in the United Kingdom: and how is it configured?

You might say, like the funny guys at Bull, that there is nothing confidential on these servers...

Good, as we obviously have a little more memory than the others do, we invite you to read these very old advisories... See? We are doing part of the work of the people in charge of the audit at Bull. In exchange for our time, we accept gloubi-boulga for our late meals, good music (MP3), a trip to the Maldives so that we can rest after so many efforts and a check for 500 million dollars. Please deposit it in an account in an online bank of VaduZ...

http://www.securityfocus.com/advisories/592
http://www.securityfocus.com/advisories/597  (We think this one should be read carefully by Bull's admin.)

Kitetoa