To apply for an HQL, you must Release PII to the world

The #1 community for Gun Owners of the Northeast

Member Benefits:

  • No ad networks!
  • Discuss all aspects of firearm ownership
  • Discuss anti-gun legislation
  • Buy, sell, and trade in the classified section
  • Chat with Local gun shops, ranges, trainers & other businesses
  • Discover free outdoor shooting areas
  • View up to date on firearm-related events
  • Share photos & video with other members
  • ...and so much more!

    • Register Log in
    P

    Patrick

    MSI Executive Member
    Apr 26, 2009
    7,725
    Calvert County
    This again.

    The MSP put up the HQL process overnight and the only way to apply is to expose your PII to the world.

    Let me demonstrate:

    Go to https://emdsp.mdsp.org/egov/Login.aspx

    GetInline.aspx




    Now click the link in the upper-left of the screen titled "Register a Person" and enter the last name and DOB of anyone who has applied for an HQL. Use "Munster" and DOB 6/6/1966:

    GetInline.aspx





    Now get Hermann's PII including email address:

    GetInline.aspx




    Reset Hermann's password by using name and DOB combined with the answer to a 'secret question' that might be trivial:

    GetInline.aspx





    Guess his secret question and you win the internet!

    But hey! They at least encrypted the lookup that requires no credentials to find my records!

    Useless.
     
    ShallNotInfringe

    ShallNotInfringe

    Lil Firecracker
    Feb 17, 2013
    8,554
    The MSP site says this under fingerprinting instructions:

    Agency Authorization Number: 1300004845

    Agency ORI Number: MD920511Z

    Reason Fingerprinted: Criminal Procedure Article, Section 5-117.1 pertaining to Handgun Qualification License

    Here's the link:
    https://www.mdsp.org/Organization/S...ivision/MainLicensingPage/Fingerprinting.aspx

    This is NOT a criminal procedure article, it's a Public Safety Article. In fact, there isn't a CPA section 5-117.1 at all.

    Here's the link, there's only a 5-101 and a 5-102.

    http://statutes.laws.com/maryland/criminal-procedure/title-5/subtitle-1
     
    P

    pilotguy299

    Ultimate Member
    Sep 26, 2010
    1,809
    FredNeck County, MD
    How irresponsible!

    With so many ways of finding someone's DOB, now they have provided access to someone's Soc Sec # (If that person was dumb enough to put it in the system).

    Also a great way for an estranged spouse to find where the other now lives.

    MSP, you should be ashamed !!!
     
    P

    pilotguy299

    Ultimate Member
    Sep 26, 2010
    1,809
    FredNeck County, MD
    mr h said:
    I really REALLY hope this can be brought up in court today.

    My other wonderment (purely rhetorical, I'm sure) is whether it's enough to reactivate the PII suit?
    Click to expand...

    Should be. It shows their disregard for following the law about asking for Soc Sec #sin violation of the privacy act, and then allowing other people to access it improperly.
     
    Mr H

    Mr H

    Banana'd
    Mar 9, 2010
    136,281
    PRM, Province AA, District 32, GBP Zone
    CrazySanMan said:
    Wow, that's insane. Now I wish I didn't fill out the HQL app first thing this morning.
    Click to expand...

    Not a personal thing, so don't hit me :D, but I have wondered all along why everyone seemed so hot to get into the system and apply.

    Sure, there's the "bury them" aspect... but with the history of asshattery with MSP's processes, why not wait to see if things actually WORK??
     
    jpo183

    jpo183

    Ultimate Member
    Mar 20, 2013
    4,116
    in Maryland
    Patrick said:
    This again.

    The MSP put up the HQL process overnight and the only way to apply is to expose your PII to the world.

    Let me demonstrate:

    Go to https://emdsp.mdsp.org/egov/Login.aspx

    GetInline.aspx




    Now click the link in the upper-left of the screen titled "Register a Person" and enter the last name and DOB of anyone who has applied for an HQL. Use "Munster" and DOB 6/6/1966:

    GetInline.aspx





    Now get Hermann's PII including email address:

    GetInline.aspx




    Reset Hermann's password by using name and DOB combined with the answer to a 'secret question' that might be trivial:

    GetInline.aspx





    Guess his secret question and you win the internet!

    But hey! They at least encrypted the lookup that requires no credentials to find my records!

    Useless.
    Click to expand...


    as he said below...holee flock

    Is MSI reporting this? I think Ill write a letter to the FNP
     
    JettaRed

    JettaRed

    Ultimate Member
    Mar 13, 2013
    1,138
    Middletown
    Folks, be VERY, VERY careful trying to access a government site using "hacking" tactics or methods. I would advise NOT testing the site. You may be violating Federal laws.

    Since there is no warning on this site, one may be OK. Just wouldn't "test the waters" on this one.
     
    You must log in or register to reply here.

    Users who are viewing this thread

    Total: 2 (members: 0, guests: 2)
    USTASC banner ad - training

    Latest posts

    Forum statistics

    Threads
    275,644
    Messages
    7,289,658
    Members
    33,493
    Latest member
    dracula

    Latest threads

    Top Bottom