?

Log in

No account? Create an account

After making a donation, and not seeing a final confirmation or… - Оживший юзерпик

Jan. 25th, 2006

09:59 am

Previous Entry Share Next Entry

After making a donation, and not seeing a final confirmation or thank-you page, Cuthbert put ../../../ into the address line. If the site had been unprotected this would have allowed him to move up three directories. ... Last week Daniel Cuthbert was convicted of breaking the Computer Misuse Act, fined £400, and ordered to pay £600 in costs. As an IT security consultant, it will be a long time before Cuthbert's reputation is restored and it is possible he will never work in the industry again.

Current Mood: задумчивое

Comments:

[User Picture]
From:gt
Date:January 25th, 2006 09:45 am (UTC)
(Link)
Это пипец какой-то! То есть, если опечатаешься, и случайно пойдешь не туда, то тоже попадешь под этот акт? Должен-же быть какой-то мнимальный уровень защиты!
(Reply) (Thread)
[User Picture]
From:besm6
Date:January 25th, 2006 01:02 pm (UTC)
(Link)
Минимальным в данном случае является, к сожалению, "дайте мне другой глобус".
(Reply) (Parent) (Thread)