The BugEyed Review Blog

News, views and reviews by your average Joe on the street. No, my name is not Joe.

« Half Life 2 on your Intel MacBook
“Cappuccino” at London Pie Company – Greenmarket Square »

Google unveils CodeSearch

Posted by Bug-E on October 6th, 2006

Yay!

Nice!

Useful!

Wait, what?

OK, so on the Google Blog (And on IOL Technology and a bunch of other places I’m sure) I noticed that Google has made a code searching site. They seemed to grab the source code from a whole bunch of open source projects (including, so far as I’ve noticed, code for FreeBSD’s ports and CPAN and and and), and you can now search through the code.

I’m honestly not sure what use this is? Other than maybe seeing how other people did something you’re wanting to do, but how do you search for that? Hope somebody else commented their code?

*shrug*

That’s all fine and well, I’m sure I’ll use it at some point in time for more than fun.

Fun? Yes! Check this out. Some guy on slashdot searched for “backdoor password” and came up with some interesting hits… I then tried to find some equally interesting tidbits, but didn’t find quite ones like that, but here are some searches I did (most end up finding some really interesting comments in code):

* fuck

* george bush

* john kerry

* i hate my job

* dumbass

* root password

You see the recurring theme here. Frustrated developers putting comments into their code, or just finding default usernames and/or password for systems.

Can you find any other interesting searches? :-)

UPDATE: Just found this on he wordpress wp-hackers mailing list, about finding wordpress database usernames and passwords on google’s codesearch… Can’t protect stupid users from themselves…

UPDATE 2: After looking at the wordpress entry above, I did some more digging for more config file type searches, and found this search for phpMyAdmin’s config.inc.php file… Lots there too… Reminds me of that age-old normal Google Search for publicly accessible phpMyAdmin interfaces…

UPDATE 3: Just found another beauty at digg.com, about some winzip keygen found on Google codesearch. hehe.

UPDATE 4: Whoa, nice one! Quinton just sent me this beauty.

UPDATE 5: Damn, even more! Found this over at Chris Shiflett’s site, listing some rather bad security holes becoming apparent when searching…

UPDATE 6: Man oh man, this gets better. Harry Fuecks over at sitepoint.com pointed out a proof-of-concept mass-distributed-computing option… This is getting better and better. I wonder if anybody at Google actually anticipated this kind of response…?

Technorati Tags: , , ,

This entry was posted on Friday, October 6th, 2006 at 09:08:58 and is filed under Articles, Software, Views, Websites. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

« Half Life 2 on your Intel MacBook
“Cappuccino” at London Pie Company – Greenmarket Square »