Whats the problem in this ? This is just an enhancement ,can you elaborate how this can cause security problem?
-
-
-
Really?
-
Yes really , can you explain pls? How otp reading method of aadhar app affects its security?its their own app , they can choose whatever way they want , how would it affect the security?
-
You cannot do stuff the way you want because it's your app. UIDAI is handling sensitive data of millions of Indians. Certain security standards must be followed. This code can be written by a 2nd year CS student.
-
Can you cut the crap and move to the security part? I am still waiting
-
Agreed. There is no security related issue while receiving OTP in Aadhaar app. Every standard app do the same. This guy.
@fs0c131y just getting attention by making fool to some non technical guys
End of conversation
New conversation -
-
-
What is this IDE I like the color

-
It's Android Studio. Darcula theme
- 1 more reply
New conversation -
-
-
but but but... we have 13 foot high walls! no one can get into the CIDR!
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Last several years, I stopped spending on anti virus softwares because i became little bit careful with my PC usage. Lets make the user aware that, that is all it takes. I rest my case now.
-
Are you on Windows? Because if so, your case might um be rather well rested indeed..
-
Yes, im on windows, i use insider builds, i can say i never re-installed windows in last several due to any sort of infection, i do often re install coz of bugs
-
You do realise that the sign of a gold virus is that there is no sign of it? I'd use atleast a firewall.
End of conversation
New conversation -
-
-
There is no right way to do SMS OTP. SMS OTP is getting phased out & new systems just starting out shouldn't use it at all. How come a security expert like u never talk about that? Aadhaar is intentional bomb India is made to sit on by (((Western Thugs)))https://twitter.com/Stupidosaur/status/961140724661149696 …
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
3. Let's assume an app is waiting and listening to your sms with header containing the word adhaar, and detects your otp and sends it to the hackers server, that's not uidai's security failure but the user's carelessness in allowing unknown app to read your messages. /n
-
Yeah. But to do that, you don't need to reverse engineer and see the source code. You can do this for any app sending OTP.
End of conversation
New conversation -
-
-
Still confused regarding the inner for loop
. Why is it used ?
- 1 more reply
New conversation -
-
-
Nah. It's definitely being checked. Instead of you filling it on the app, it fills it for you by reading your sms. And obviously compared against the server side value.
-
The code is bizarre. Look at that last loop. The for loop iterates as many times as there are words in the split but only item being used is the item at the 6th position (split[5]).
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.