<body><script type="text/javascript"> function setAttributeOnload(object, attribute, val) { if(window.addEventListener) { window.addEventListener('load', function(){ object[attribute] = val; }, false); } else { window.attachEvent('onload', function(){ object[attribute] = val; }); } } </script> <div id="navbar-iframe-container"></div> <script type="text/javascript" src="https://apis.google.com/js/platform.js"></script> <script type="text/javascript"> gapi.load("gapi.iframes:gapi.iframes.style.bubble", function() { if (gapi.iframes && gapi.iframes.getContext) { gapi.iframes.getContext().openChild({ url: 'https://www.blogger.com/navbar.g?targetBlogID\x3d13953979\x26blogName\x3dDigital+Squid\x26publishMode\x3dPUBLISH_MODE_BLOGSPOT\x26navbarType\x3dBLACK\x26layoutType\x3dCLASSIC\x26searchRoot\x3dhttps://digitalsquid.blogspot.com/search\x26blogLocale\x3den_US\x26v\x3d2\x26homepageUrl\x3dhttp://digitalsquid.blogspot.com/\x26vt\x3d-1185506453169371183', where: document.getElementById("navbar-iframe-container"), id: "navbar-iframe" }); } }); </script>

Wednesday, November 09, 2005

Dhiraagu Proxy Server Compromised...

Jaa Posted the following article on his blog... i think it still works... its sad that dhiraagu did not respond to his repeated mails pointing out the flaws...

this flaw could mean that anyone can view ppls traffic... their trends etc... capture passwords.. logins.. an god knows wat else.... dhiraagu plz respond to this now... ur prolly gonna have ppl pretending to be proxy servers or ftp servers by the end of the day....

http://jaa.technova.com.mv/archives/31-I,-Dhiraagu-proxy-server.html


i tried this out as well to see if it works... attached is screenshot of sniffers.. 10/11/2005



waiting for dhiraagu to respond to flaw asap... im a dhiraagu user an i def dont want my traffic to be intercepted... :)

UPDATE: 12/11/2005....

the issue still isnt fixed... below is a screenshot for 12/11/2005-

There has been some question as to how easy it is to do "evil" stuff with this... granted this is jus a dialup connection with a packet sniffer... but lets face it... jaa is right u CAN do a lot of things with this... setup a proxy to listen on port 8080... redirect some pages... log passwords... granted takes some time and effort... an a lil understandin of how all this works.... but doable...

and even if nothin is doable...it shouldnt be possible to view this requests.... that in itself is a big FLAW....well seems dhiraagu knows abt Jaa's post now....waitin an waitin for dhiraagu to fix it...

Hmm... wonder if focus infocom servers are the same??

_______________________________
Disclaimer: This article and opinions included in it are highly judgmental and not intended to be believed as seen. This post represents the unofficial view of the voices in my head after much debate. don’t quote me on that; don’t quote me on anything :) If u think this works.. good for you.. If u think it wont.. good for you too... The only reason we are here is coz these things if not addressed affects us users directly!! As always use grey matter as intended for use, drink lots of water, don't smoke, and wear plenty of sunscreen.

posted by Daadi @ 9:43 PM 14 comments

Monday, November 07, 2005

Online Privacy

head over to jaa's blog.. check out this article..

http://jaa.technova.com.mv/archives/1-Battling-for-privacy-Keeping-your-computer-data-and-internet-communications-secure.html

check it out.. read it, practice it...

posted by Daadi @ 9:09 PM 1 comments




Disclaimer: Some images and logos that are listed here, and which are contained are owned by their respective owners. we do not claim ownership of such images and logos.