20 февраля 2010

Гуглобаз баги

Программисты бывают разные, но в целом по качеству сферические программисты в вакууме одинаковые

There’s four things of note here.
Firstly it’s on Google’s domain, not some other domain like Google Gadgets or something. So yes, it’s bad for phishing and for cookies.
Secondly, it’s over SSL/TLS (so no one should be able to see what’s going on, right?). Third, it could be used to hijack Google Buzz - as if anyone is using that product (or at least you shouldn’t be).
And lastly isn’t it ironic that Google is asking to know where I am on the very same page that’s being compromised?
Why on earth does Google think its systems are secure enough to trust them with that kind of sensitive information?
Yes, bad guys can figure out where you’re located if you allow that function. Chinese dissidents beware!

Комментариев нет:

Архив блога

What to do?

you have site designed in a dark theme, saying dark background, white font.
By default google toolbar autocomplete cracks html for inputs or selects containg "email" "name" "address" and other buzzwords and changes background to yellow. As a result when visitor fills form, he enters text as white on yellow and can not easy validate his input
What to do?



item http://www.voronenko.com/2010/02/blog-post_20.html