Stonehead - Slashdot User

Submission + - A Web Application Exploitation Expose (informit.com)

Submitted by twistedmoney99 on Monday August 06, 2007 @12:19PM

twistedmoney99 writes: Installing an insecure web application is dangerous for the website operator, its visitors, the hosting provider, as well as any other clients of that provider. In an expose of one such web application, Seth Fogie walks through the testing of a commercial application (EZPhotoSales), gaining access to sensitive data, bypassing applications protections, finding permanent cross-site scripting bugs, gaining shell access, and obtaining access to the web pages and scripts of all the other clients of the hosting provider. If you are a user of this software, the article does include a few tips on how to secure the application. Ironically, the application developer did take measures to protect their intellectual property using ionCube (a PHP encoder) — if only the same efforts were made to protect the customer.

Submission + - Bloggers Consider Forming Labor Union (newsvine.com)

Submitted by

truthsearch

on Monday August 06, 2007 @11:38AM

truthsearch writes: "In a move that might make some people scratch their heads, a loosely formed coalition of left-leaning bloggers are trying to band together to form a labor union they hope will help them receive health insurance, conduct collective bargaining or even set professional standards. The effort is an extension of the blogosphere's growing power and presence, especially within the political realm, and for many, evokes memories of the early labor organization of freelance writers in the early 1980s. There's decidedly less support for a union movement among conservative bloggers."

Slashdot Top Deals