Richard, thanks for the tip.
I don't have client side/browser problems, my hacker problems are on the
server. Also I really don't like Firefox or Mozilla based products.
Firefox/Noscript would be better for visits to Paypal I guess.
On 21 September 2011 12:43, Richard Gaskin wrote:
> Another go
So we're all screwed?
On 21 September 2011 14:12, Bob Sneidar wrote:
> "The fatal flaw making exploitation possible is the failure of JavaServer
> Faces to implement AES/DES encryption algorithms correctly. The scheme
> provides no way to sign the ciphertext or authenticate the block cipher
> m
"The fatal flaw making exploitation possible is the failure of JavaServer Faces
to implement AES/DES encryption algorithms correctly. The scheme provides no
way to sign the ciphertext or authenticate the block cipher mode."
That says it all. Incorrect implementation of server software.
Bob
>
I highly doubt that SSL was hacked, that is the encryption method itself. They
probably back or side doored it.
Bob
On Sep 21, 2011, at 4:09 AM, Claudi Cornaz wrote:
> Hi all,
>
> I came across this article and altough I don't know much about this I thought
> it might interest some of you.
Another good reason to use NoScript.
--
Richard Gaskin
Fourth World
LiveCode training and consulting: http://www.fourthworld.com
Webzine for LiveCode developers: http://www.LiveCodeJournal.com
LiveCode Journal blog: http://LiveCodejournal.com/blog.irv
___
Subject: Re: SSL encryption hacked
Some of my Dreamhost accounts have been violated by a group of Malaysian
script kiddies. I wonder what they used. My early investigation revealed
pieces of code that appeared in a Wordpress media upload folder. This is the
place where Wordpress puts imported photos
Some of my Dreamhost accounts have been violated by a group of Malaysian
script kiddies. I wonder what they used. My early investigation revealed
pieces of code that appeared in a Wordpress media upload folder. This is the
place where Wordpress puts imported photos and other media.
They had com
