lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <001b01c3ecf5$2281f230$02d210ac@CL1FF2>
From: Logan5 at Logan5.com (Logan5)
Subject: home land tracker software

LOL

The NAMECHECK dialog is succeptable to XSS.  Enter the following into
any of the fields:

<script>alert('secured!')</alert>

-L5


-----Original Message-----
From: full-disclosure-admin@...ts.netsys.com
[mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Exibar
Sent: Friday, February 06, 2004 2:04 PM
To: DAN MORRILL; full-disclosure@...ts.netsys.com
Subject: Re: [Full-Disclosure] home land tracker software


hrumph.... I just tried about a dozen maybe two dozen names and none
produced matches.  Their database can't be that big :-)

 William Gates
 George W. Bush

 were two names that I thought for sure would pop up "something" at
least.....   anyone find a name that actually displays information?

 Ex


----- Original Message ----- 
From: "DAN MORRILL" <dan_20407@....com>
To: <full-disclosure@...ts.netsys.com>
Sent: Friday, February 06, 2004 1:52 PM
Subject: [Full-Disclosure] home land tracker software


> http://www.ofaccompliance.com/
>
> anyone want to debate the ethics of this and the US Patriot act and 
> how to secure the system when it is in use or misuse? You can check 
> our own name
at
> the web site, as well as more popular folks. As an information 
> security person, this worries me. Both from a compliance issue 
> (corporate) and on a personal issue.
>
> Additional reading US Patriot act, section 326.
>
> All information security related ideas welcome, flames to 
> /dev/null/blackhole/no-read-access
>
> My question is : what were they thinking?
>
>
> r/
> Dan
>
> _________________________________________________________________
> Find great local high-speed Internet access value at the MSN 
> High-Speed Marketplace. 
> http://click.atdmt.com/AVE/go/onm00200360ave/direct/01/
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
>
>

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ