Authored by: Anonymous on Tuesday, July 02 2013 @ 07:30 PM EDT |
This was not a "supposedly locked door." Anybody who thought this
"door" was "locked" doesn't have the faintest idea how HTTP
works (or IT security in general).[ Reply to This | Parent | # ]
|
|
Authored by: Zyphyr on Tuesday, July 02 2013 @ 10:37 PM EDT |
Not only was this door NOT locked, it was one of the doors that open for you
when you get close to it.[ Reply to This | Parent | # ]
|
|
Authored by: ash4stuff on Wednesday, July 03 2013 @ 05:24 AM EDT |
a hash wouldn't have worked either. The untrusted party
(browser) already knows the ID. If the id's in the url were
hashed, the browser would have to calculate it to know where
it has to redirect. And it would have taken half an hour
longer to build this "mega hacking security"* feature into
the scrapper.
*just in case, it was meant ironically.[ Reply to This | Parent | # ]
|
|