Hmm, good idea, message handlers work without the required origin checks so people get lazy. Making them mandatory seems smart.
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Any word on the Mozilla issue?
-
Nope, not resolved yet. I think they're waiting for a mandatory addon review from Mozilla, but I'm not sure.
End of conversation
New conversation -
-
-
uhm they fixed it with an invalid SSL cert for that domain :)pic.twitter.com/59TScyfRcb
-
Huh, weird, they must have just changed that in the last few minutes. Hmm, I guess that will still work.
- 1 more reply
New conversation -
-
-
.
@taviso "checked my...logs & they were using a Mac. Naturally, calc.exe will not appear" See; just use a Mac to avoid Tavis' exploits

-
New conversation -
-
-
I don't know what to think of them using your PoC for calc.exe under MacOS

-
Sounds about right.. A lot of vendors contract programmers these days.. I've come across this a lot.
- 1 more reply
New conversation -
-
-
.
@taviso "They also said they couldn't get my exploit to work, but I checked my apache access logs and they were using a Mac." /facepalmThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.