@coderaw_ Because Majority isn't Into Tech and They aren't comfortable with Cli, Also Windows is Microsoft product so it's pushed by Microsoft for financial benefit of the Company.
CBSE people didn't configure their AWS bucket properly and now we can paginate & enumerate all their media which has 2026 answersheets & question papers. ListObjectsV2 works without any auth and the bucket root is listable too — anyone on the internet can download any scanned booklet — across institutions. Multiple institutions are using the same bucket, insanely insecure.
We were able to get full create, read, update and delete (CRUD) access & shell access to CBSE's prod servers (as mentioned in their circular https://t.co/MFiu5xU1DF). This is disastrous. Proof archive is at https://t.co/LWWqKBOGjv.
Prod URL (might be taken down): https://t.co/gbZKz3d65V
Dear @cbseindia29, accepting your mistakes will only benefit you. Just look at this student's answer sheet, how exactly is this evaluation being done? Marks given on blank pages and random grading? Students deserve fair and transparent checking. Do better. 🛑 #CBSE#cbseosm@ANI