On Thu, 29 Jan 2004 15:50:00 +0100 Simon Lange <sl@???> wrote:
> > one which is well known (_not_ one that i found) is the
> > session id problem with the verizon wireless web site.
> the technology is still save but the responsible admin there has an issue...
er, no. the design of the app was flawed.
there are certain common design errors that are made in web apps by
developers who are not security minded. they are repeated time and time
again. sometimes they aren't too hard to fix. sometimes they can be
incredibly expensive to fix. they can be made in any environment
-- VB/ASP, PHP, Perl, etc., etc., and i've seen them in all sorts of places.
richard
--
Richard Welty rwelty@???
Averill Park Networking 518-573-7592
Java, PHP, PostgreSQL, Unix, Linux, IP Network Engineering, Security