lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Mon, 12 Jul 2004 15:21:56 -0400
From: "Polazzo Justin" <Justin.Polazzo@...ilities.gatech.edu>
To: "Drew Copley" <dcopley@...e.com>
Cc: <bugtraq@...urityfocus.com>
Subject: RE: MSIE Download Window Filename + Filetype Spoofing Vulnerability


Should you not be able to tile your gui any way you please? 

Someone may be thinking that you could put an image in front of the security box in order to trick users into clicking on "open" without knowledge. I noticed that you cant click on the buttons when the image is in front of them.

Would you be able to have an insane speed at which the object moves over the buttons, or a  pulse action to where the image would appear to be solid, but would still select "open" when pressed?

jp

-----Original Message-----
From: Drew Copley [mailto:dcopley@...e.com]

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ