Even though this is @__daveg__ ’s secret branded vulnerability and not mine I’m going to pre-announce it:
PassPass!
It’s when you see a login page and you type “admin” and then “admin” and it lets you in.
-
Show this thread
-
Next Matasano revelation: QOQQEQ! QOQQEQ is a devastating pattern of vulnerabilities discovered in many applications we tested where you type ‘OR’’=‘ as a password and it lets you in.
1 reply 2 retweets 17 likesShow this thread -
Next: FileGuile! I’m really proud of this one. See, you make a file in /tmp and then you go to write to it but in the interim I go and replace your file with a link to a file of my choosing and then you write to your file but it’s /etc/passwd instead and hahaha I win.
2 replies 3 retweets 22 likesShow this thread
You joke but: it never even occurred to me that that could be A Thing, and now it occurs to me that that could be A Thing, so branding a vulnerability has again increased the security of shipping software systems.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.