Read this
 

Reallusion Forum
Reallusion Home   
Search
    Members    Calendar    Who's On
Welcome Guest ( Login | Register )
     
Recent Posts
   
Popular Topics

Home » Reallusion » General » Read this

Read this Expand / Collapse
Rate Topic
Display Mode
Topic Options
Author
Message
RKD
Posted 9/12/2007 5:04:31 AM


Power User

Power UserPower UserPower UserPower UserPower UserPower UserPower UserPower User

Group: Forum Members
Last Login: Yesterday @ 6:14:41 AM
Posts: 104, Visits: 1,546
Proof-of-concept to demonstrate a very basic phishing attempt. Might not work in all browsers, but well in FF. Can be deleted. Allowing to post HTML is a security risk.

EDIT: Script code removed. Though someone has quoted it.

Post #172
RKD
Posted 9/12/2007 6:35:17 AM


Power User

Power UserPower UserPower UserPower UserPower UserPower UserPower UserPower User

Group: Forum Members
Last Login: Yesterday @ 6:14:41 AM
Posts: 104, Visits: 1,546
Another example (you need to login to view this):

EDIT: Script code removed, since logs show that Reallusion/mods have read the post.

Post #173
Armstrong
Posted 9/12/2007 12:38:06 PM


Power User

Power UserPower UserPower UserPower UserPower UserPower UserPower UserPower User

Group: Forum Members
Last Login: 11/1/2008 1:24:44 PM
Posts: 121, Visits: 380
RKD (9/12/2007)
Proof-of-concept to demonstrate a very basic phishing attempt. Might not work in all browsers, but well in FF. Can be deleted. Allowing to post HTML is a security risk.

? Misleading!!!
Alowing to post some ADVANCED HTML is only a security risk if the dangerous tags and scripts are permitted.
Raw basic HTML for elements like tables is about as dangeous as a full stop and can do nothing more than draw a box!
Will this element be incorporated here???

-www.iCloneTutorials.com- -1st Ever Stills Gallery- -Sexy Siouxie- -Digital Comics- -The iClone Journal-
Post #180
RKD
Posted 9/12/2007 2:09:45 PM


Power User

Power UserPower UserPower UserPower UserPower UserPower UserPower UserPower User

Group: Forum Members
Last Login: Yesterday @ 6:14:41 AM
Posts: 104, Visits: 1,546
Misleading? Lol, the above examples are quick and dirty. They only scratch the surface of how the site can be manipulated, user action monitored or cookies captured. There was annoying spam on the fold forum. Allowing HTML and other multimedia foofaraw might bring that to a new level in no time. Just my two cents.

Post #181
aknzrdude
Posted 9/13/2007 3:26:46 PM


Tutor

TutorTutorTutorTutorTutorTutorTutorTutor

Group: Senior Forum members
Last Login: Today @ 1:36:13 AM
Posts: 355, Visits: 1,842
well all i know is that it got me - thanks for highlighting it RKD
Post #203
RKD
Posted 9/13/2007 4:25:44 PM


Power User

Power UserPower UserPower UserPower UserPower UserPower UserPower UserPower User

Group: Forum Members
Last Login: Yesterday @ 6:14:41 AM
Posts: 104, Visits: 1,546
aknzrdude (9/13/2007)
well all i know is that it got me - thanks for highlighting it RKD
Thank you.

Security is all the more important now that the forum accounts have been merged with the premium member accounts.

Post #204
« Prev Topic | Next Topic »


Reading This Topic Expand / Collapse
Active Users: 0 (0 guests, 0 members, 0 anonymous members)
No members currently viewing this topic.
Forum Moderators: Admin, Visconti, Peter Edwards, Spider, JMartin, Phil

Permissions Expand / Collapse

All times are GMT -7:00, Time now is 5:33am

Powered By InstantForum.NET v4.1.4 © 2008
Execution: 0.125. 13 queries. Compression Disabled.