Slashdot videos: Now with more Slashdot!
We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).
And now Vanish is the trusted third party
Whatever the reasons public key encryption hasn't taken off (too much effort, no perceived threat,
You're wrong. It's compression. With a very large (and growing) dictionary on the TinyURL servers.
They are advertising for a contest where, in order to sign up, you have to input your personal information and credit card number into a flash application on an unsecured web page. This might be excused if the flash application sent the data back over a secure channel, but this isn't the case. A quick capture using wireshark reveals that the data is sent back using a soap call over an unsecured http connection.
One would hope that the flashy registration wizard ends with a load wav berating the user for inputting such confidential data into a website without checking for the padlock or colored address bar, but alas.
How do they expect mom and dad to learn to shop safely on the internet when they are setting such a bad example themselves?"