Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Sponsored by: █ Sparkhost - Hosting Without Compromises! █ Hybrid Performance Web Hosting █ Spark Host Stream Hosting █ Hybrid IRC & IRCd Server Shell Accounts

Real and Bizarre Information Security Situations

Started by bspirovski , Aug 10 2008 04:16 AM

Please log in to reply

No replies to this topic

#1 bspirovski

Specialist

Sergeant Major
118 posts

Posted 10 August 2008 - 04:16 AM

More for fun then for business, a list of the most bizarre security incidents i witnessed

An organization had a secure site where the log off button simply navigates the visitor off the main page, but does not tear down or in any other way disconnect the session. Until the browser is not off, you can use the back button to go back and continue work with valid credentials.
A security savvy user sent an encrypted file via public e-mail , and then sent the decryption key in another clear text e-mail, with a subject line: "Password".

Read the entire text
http://www.shortinfo...n-security.html

Regards

Bozidar Spirovski
http://www.shortinfosec.net

Back to User Submitted Links