Posts Tagged ‘internet security’

May 12 2008

Gmail: Lean, Mean Spamming Machine!

Posted by Shijaz Under Uncategorized No Comments » |
Tags: , , , ,

A "serious security flaw" in Gmail turns Google’s e-mail service into a spamming machine, according to a recent security report.
INSERT, the Information Security Research Team, has created a proof of concept that exploits the "trust hierarchy" that exists between mail service providers. By exploiting a flaw in the way Google forwards email messages, a spammer [...]

Read More »
April 27 2008

YouTube security issue in UAE fixed

Posted by Shijaz Under Uncategorized 1 Comment » |
Tags: , , ,

Etisalat seems to have fixed the YouTube caching issue that resulted in a major security breach which allowed users to see other user’s favorites, videoes, profiles and messages.
ITP reports that Google has issued a public statement as follows:
We have had reports of this problem in the UAE and believe it was due to caching being [...]

Read More »
April 18 2008

Security Vulnerability in Youtube?!

Posted by Shijaz Under Uncategorized No Comments » |
Tags: , , , ,

Hello world. The time is 12:31 AM in Abu Dhabi, United Arab Emirates, and I have logged in to YouTube to upload a short video. And guess what? I am automatically logged in as another Youtube user that I dont know anything about!!
I kept navigating on various pages in YouTube, and I found that I [...]

Read More »
October 5 2007

Internet Explorer 7: Re-release

Posted by Shijaz Under Uncategorized 1 Comment » |
Tags: , , ,

Microsoft has re-released Internet Explorer 7.0 yesterday. The added features include:

The Menu bar will be turned on by default (thankfully)
Removed the Windows Genuine Advantage validation requirement for expanded availability to Windows PC users (legal copy of Windows… or otherwise)
For first time users, the first-run experience includes a new, easily accessible overview
For all users, the [...]

Read More »
October 1 2007

Wildcard Certificates: My frivolous antics

Posted by Shijaz Under Uncategorized No Comments » |
Tags: , , , ,

A client wanted to publish two web services on SSL using ISA Server 2006: Outlook Web Access and Sharepoint Portal Server.
We know that ISA Server can only bind one SSL certificate per socket. This translates to one HTTPS URL/website per socket. What does this mean? Lets say I have my OWA at https://owa.shijaz.com/ and I [...]

Read More »
September 5 2007

Dying hard

Posted by Shijaz Under Uncategorized 4 Comments » |
Tags: , , ,

I normally don’t blog about anything thats not technical enough. But this was asking for it.
Some of my readers who saw ‘Live Free or Die Hard 4′ said that they were fascinated by the technical possibility of the feats demonstrated by hackers in the movie. I’m not really the movies guy — but yielding to [...]

Read More »
« Older Entries