Hi all,
recently there was a blog post by Lars Fasel on using metasploit to search for vulnerable SAP systems on the internet. However, this blog post has been removed, most likely by a moderator.
For me it's not clear why this has happened. There was no disclosure of an 0-day vulnerability. Instead, the blog highlighted how common it is to mistakenly expose service of a SAP system on the internet. In my opinion this kind of information should be widely available so administrators can take the necessary steps to solve these security issues. Or even better be aware of them and don't make the mistake in the first place. However, instead of publishing this information it is removed from SCN. This feels like trying to establish some security by obscurity, which clearly doesn't work!
Any other opinions on this? Am I totally wrong with my interpretation?
Best,
Christian