Razor512 Posted March 2, 2008 Share Posted March 2, 2008 http://thedailywtf.com/Articles/So-You-Hacked-Our-Site!.aspx this site was the MOST secure website on the planet http://officers.federalsuppliers.com/agents.html this code made the site more secure than any other site <script language="javascript"> <!--// /*This Script allows people to enter by using a form that asks for a UserID and Password*/ function pasuser(form) { if (form.id.value=="buyers") { if (form.pass.value=="gov1996") { location="http://officers.federalsuppliers.com/agents.html" } else { alert("Invalid Password") } } else { alert("Invalid UserID") } } //--> </script> if your making a website and want to have a login system thats simple to make and use then this is for you they took that page down but the new link is http://www.federalsuppliers.com/warning.html still doesnt work right, there still fixing it after that phone call but this didnt change yet <script language="javascript"> <!--// /*This Script allows people to enter by using a form that asks for a UserID and Password*/ function pasuser(form) { if (form.id.value=="zzzzzz") { if (form.pass.value=="fffxxx") { location="http://officers.federalsuppliers.com/agents.html" } else { alert("Invalid Password") } } else { alert("Invalid UserID") } } //--> </script> no need to try it, it leads to a page thats not there any more the government could learn a thing or 2 from from the people who made that site Quote Link to comment Share on other sites More sharing options...
K1u Posted March 2, 2008 Share Posted March 2, 2008 http://thedailywtf.com/Articles/So-You-Hacked-Our-Site!.aspx this site was the MOST secure website on the planet http://officers.federalsuppliers.com/agents.html this code made the site more secure than any other site <script language="javascript"> <!--// /*This Script allows people to enter by using a form that asks for a UserID and Password*/ function pasuser(form) { if (form.id.value=="buyers") { if (form.pass.value=="gov1996") { location="http://officers.federalsuppliers.com/agents.html" } else { alert("Invalid Password") } } else { alert("Invalid UserID") } } //--> </script> if your making a website and want to have a login system thats simple to make and use then this is for you they took that page down but the new link is http://www.federalsuppliers.com/warning.html still doesnt work right, there still fixing it after that phone call but this didnt change yet <script language="javascript"> <!--// /*This Script allows people to enter by using a form that asks for a UserID and Password*/ function pasuser(form) { if (form.id.value=="zzzzzz") { if (form.pass.value=="fffxxx") { location="http://officers.federalsuppliers.com/agents.html" } else { alert("Invalid Password") } } else { alert("Invalid UserID") } } //--> </script> no need to try it, it leads to a page thats not there any more the government could learn a thing or 2 from from the people who made that site OMFG ROFL! And to top it off those passwords are extremely insecure. Quote Link to comment Share on other sites More sharing options...
SomeoneE1se Posted March 2, 2008 Share Posted March 2, 2008 really... that's the problem you see... Quote Link to comment Share on other sites More sharing options...
digip Posted March 2, 2008 Share Posted March 2, 2008 really... that's the problem you see... QFE! Its not the password that is the problem(although it is a bad passphrasea nd easily brute forced). Its the fact that they used Javascript to store the login/password info and is readable from the www, instead of something like PHP where you can't see it because it would be server side only. Quote Link to comment Share on other sites More sharing options...
K1u Posted March 2, 2008 Share Posted March 2, 2008 really... that's the problem you see... Wow... do you have to make a fucking comment out of everything you troll. I said to top it off. Quote Link to comment Share on other sites More sharing options...
moonlit Posted March 2, 2008 Share Posted March 2, 2008 really... that's the problem you see... Wow... do you have to make a fucking comment out of everything you troll. I said to top it off. I agree with the others who've QFE the "really.. that's the problem you see", it was really the least relevant point of the entire thread. On a side note, this is the second time I've seen you flinging shit in the last 5 minutes, quit it already. Quote Link to comment Share on other sites More sharing options...
pepijntje Posted March 18, 2008 Share Posted March 18, 2008 There will never be a perfect secure website :O At least i don't think so! Quote Link to comment Share on other sites More sharing options...
jordanbray Posted March 26, 2008 Share Posted March 26, 2008 There will never be a perfect secure website :O At least i don't think so! Arguably, but you should at least, you know, try to have a brain when designing a website. It makes my brain hurt reading code like that... Quote Link to comment Share on other sites More sharing options...
nicatronTg Posted March 26, 2008 Share Posted March 26, 2008 There will never be a perfect secure website :O At least i don't think so! Arguably, but you should at least, you know, try to have a brain when designing a website. It makes my brain hurt reading code like that... <script language="javascript"> <!--// /*This Script allows people to enter by using a form that asks for a UserID and Password*/ function pasuser(form) { alert("Invalid Password"); } //--> </script> Most secure Quote Link to comment Share on other sites More sharing options...
operat0r_001 Posted March 28, 2008 Share Posted March 28, 2008 sort of off topic but uber http://sla.ckers.org/forum/read.php?2,18790,page=19 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.