|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-Disclosure] (no subject)
Valdis.Kletnieks
vt.edu
Date: Fri Dec 05 2003 - 20:18:54 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Sat, 06 Dec 2003 11:00:35 +1300, Nick FitzGerald <nickvirus-l.demon.co.uk> said:
> First, some genius (or committee thereof) decided that putting
> "userinfo" data into URLs would be a good idea. This was decided
> despite it generally being agreed -- as the URL RFC authors note _in
> the RFC_ -- to be a bad thing from a security perspective...
I'm sure the guys at 61.252.126.191 don't give a flying fornicate in a rolling
donut about how it's a bad thing from a security perspective, seeing how the
PTR for that IP is somewhere in KRNIC.NET controlled space.
Or are we now holding scammers to a higher standard of security than the
actual site admins? :)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQE/0TyOcC3lWbTT17ARAkQbAJ0RwP82x11Ko8jmWDnSjSiJllV5pACeJ0WO
E9zlP1JEtBm5FoMriaYJvek=
=vPUE
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]