Comment: First post! (Score 3, Funny) 155
What about that for "juvenile"!
Comment: Isn't the guy's name only Cyanogen? (Score 1) 86
Isn't CyanogenMod the name of the mod and not the auhtor's?
It should be "Cyanogen has ported..."
McAfee's website full of security holes-> 1
Submitted
by
Julie188
Julie188 writes "The McAfee.com website is full of security mistakes that could lead to cross-site scripting and other attacks, researchers said in a post on the Full Disclosure site on Monday. The holes with the site were found by the YGN Ethical Hacker Group, and reported to McAfee on Feb. 10, YGN says, before they were publicly disclosed to the security/hacking mailing list. Embarrassing? Yes, especially given that the company aggressively markets its own McAfee Secure service that is supposed to assure consumers that McAfee has scanned a website and found it to be safe."
Link to Original Source
Link to Original Source
McAfee has its own website vulnerable to attacks->
Submitted
by
prxp
prxp writes "Today, as every ordinary Monday, I went to my e-mail box and checked messages from the security community in Full-Disclosure. As usual I came across an advisory pointing out some web security vulnerabilities that differently from usual certainly had my attention. I could say the post called my attention for its organization (not so common among web vuln disclosers), or because it included not only one but a myriad of different vulnerabilities, or maybe because these vulnerabilities included some unusual (and potentially dangerous) stuff like server side source code disclosure, or even because these vulnerabilities were not patched by the the vendor even after 15 full days it was informed about them. But no, those were not the reasons I had my eyes rolling. The thing that really got me is that all of this is not about any vendor, it is about Mcafee, a vendor well known by its anti-virus software but also by its web security service McAfee Secure. This service provides customers with the label “Verified by McAfee Secure” so they can put in their website as a mark of safety. According to McAfee: “The McAfee SECURE trustmark only appears when the website has passed our intensive, daily security scan. We test for possible personal information access, links to dangerous sites, phishing, and other online dangers.” In other words, the presence of this label means that the website is not vulnerable to the exact same vulnerabilities McAfee currently has."
Link to Original Source
Link to Original Source
Comment: Re:HTTP 502 - Service temporarily overloaded (Score 3, Informative) 133
Slashdotted already? Damn!
Try Google's cache http://webcache.googleusercontent.com/search?oe=UTF-8&hl=pt&q=cache:kZYcDFibjHcJ:https://grepular.com/Abusing_HTTP_Status_Codes_to_Expose_Private_Information
Comment: Re:HTTP 502 - Service temporarily overloaded (Score 1) 133
Slashdotted already? Damn!
Comment: Re:Google reCAPTCHA cracked... again (Score 4, Informative) 211
Really old news. The guy's paper is dated 2009. It might be possible that Google hasn't act on it yet, but it is the same thing from one year ago. Sensationalism mode detected!
Comment: Re:I was gonna make another 'old news' comment... (Score 1) 106
You saved me the embarrassment. Thanys too!
Back to the Future! 3
Submitted
by
wisdom_brewing
wisdom_brewing writes "Notable mention for the day: Today is the day that Marty McFly arrived in the future after hitting 88mph in the Delorean back in 1985."
Comment: In soviet Russia... (Score 1) 89
...hot water cools you!