Vulnerability Development mailing list archives
about cookies
From: Eduardo Caballero <sedyer () chi spunge org>
Date: Thu, 16 May 2002 08:39:26 -0500 (CDT)
-----BEGIN PGP SIGNED MESSAGE----- Saludos: This is my first post to vuln-dev list. Well, the cookie of audiogalaxy (www.audiogalaxy.com) on the user system, reveal the username and password in plain text. This maybe a small problem, but it will better even steal the session cookie; i think. I take advantage of this opportunity, to know your opinion regarding this topic. Does anybody have a mean to prevent this?. Encription, ciphertext?. Thank you for the answers. ReYDeS P.D: Excuse my english. :) -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 5.0i for non-commercial use Charset: noconv iQEVAwUBPOOs6SW7thlnidfFAQFUWAgA4xtI/xRu2rQ1yi8q1He0UOfD8gCWExYr WplE3aHHca1Ri+wsjAyi107OrG0OuKzvBXjS5LuY9z1XIxULzUSPbW80GTpaLygS GUlEHeU8cr3DNZ0c2LgoCnehgoiH6ZocxfElkbo+TE5EQVN4e4vCfYT8/gHIAvLK e4GiOJMhO8dsj2e05H2MWB2PY4rB9021YjdkX4GcnCN7FFtDnSF3tRwlDc/RoPa1 x/va8wLYljk3ZNFj5zL6HpXp+oOonmwGvWylHC70EzN2F+8fph7vwtLptk2oQ62S nYUiNJO+ShofQYpBbaSCgmVzJXRmMykS+njiftWDq6+k/TRM9YY6AQ== =omTU -----END PGP SIGNATURE----- . . . Eduardo Caballero | ReYDeS () BigFoot com RareGaZz-Team Member | http://RareGaZz.com.ar Security Wari Projects Member | (SWP) ICQ: 139649191
Current thread:
- about cookies Eduardo Caballero (May 16)
- Re: about cookies Greg Hunt (May 16)
- Re: about cookies quentyn (May 17)
- <Possible follow-ups>
- Re: about cookies Eduardo Caballero (May 19)
- Re: about cookies Greg Hunt (May 16)