April to See Month of MySpace Bugs

April to See Month of MySpace Bugs 165

Posted by Zonk on Sunday March 18, 2007 @06:30PM from the next-up-a-month-of-teddy-bear-bugs dept.

An anonymous reader passed us a link to PC World's coverage of the upcoming Month of MySpace bugs. Organized by a pair of wiseacre hackers tired of the 'Month of X Bugs', they are set up to 'highlight the monoculture-style danger of extremely popular websites.' Though it's supposed to be funny, outside security analysts have apparently been consulted on the project. "Though the project, which launches on April 1, has all the appearance of a practical joke one well-known hacker said he'd been contacted by the Month of MySpace team with legitimate security questions. 'Those guys and I have been keeping in touch,' said Robert Hansen, chief executive of Sectheory.com. 'It's funny but it's not a joke.'"

April to See Month of MySpace Bugs

This discussion has been archived. No new comments can be posted.

Search 165 Comments Log In/Create an Account

Comments Filter:

Re:well (Score:5, Interesting)

by Omnifarious ( 11933 ) * writes: <eric-slash@omnif ... g minus language> on Sunday March 18, 2007 @06:53PM (#18397037) Homepage Journal

Which is all the more reason to make sure that no software ever has a really huge user base. It's bad for everybody.

Right now, one major thing that keeps Myspace's user base so incredibly high is the lack of a widely adopted technology like OpenID [openid.net]. Many people get Myspace accounts because they're forced into it in order to communicate reasonably with a friend, and then decide "Oh, what the heck." and build content of their own there as well. I know that's why I have a MySpace account (and, strangely enough, Omnifarious on MySpace isn't me).

Re:MySpace's Microsoft-backed infrastructure. (Score:2, Interesting)

by DrSkwid ( 118965 ) writes: on Sunday March 18, 2007 @07:24PM (#18397167) Journal

Windows is a twisty maze of passages, all alike, all leaking information.
Root/Administrator is a design flaw.
All the platforms you mention have holes in them.

And PHP is a crock, steer well clear. See http://www.php-security.org/ [php-security.org]

Re:well (Score:3, Interesting)

by natrius ( 642724 ) writes: <niran@niEINSTEINran.org minus physicist> on Sunday March 18, 2007 @08:14PM (#18397379) Homepage

Right now, one major thing that keeps Myspace's user base so incredibly high is the lack of a widely adopted technology like OpenID.

How are Myspace and OpenID remotely related? A decentralized social network would be nifty, but OpenID definitely isn't one. In the mean time, better social networks offer open APIs [facebook.com] that let you access their friend data.

Re:Why is it "funny" to exploit security bugs? (Score:5, Interesting)

by QuantumG ( 50515 ) * writes: <qg@biodome.org> on Sunday March 18, 2007 @08:20PM (#18397415) Homepage Journal

Dude, we're not talking about "writing software", we're talking about setting up a website and leaving the default mySQL account active. We're talking about writing shit in php and not escaping user input. We're talking about gross incompetence. There's plenty of it, and yes, the best way to deal with it is public naming and shaming.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

April to See Month of MySpace Bugs 165

April to See Month of MySpace Bugs More Login

April to See Month of MySpace Bugs

Re:well (Score:5, Interesting)

Re:MySpace's Microsoft-backed infrastructure. (Score:2, Interesting)

Re:well (Score:3, Interesting)

Re:Why is it "funny" to exploit security bugs? (Score:5, Interesting)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot