http://blog.sjinks.pro/security/581-odesk-time-tracker-vulnerabilities/ Verba volant, scripta manent Thu, 11 Mar 2010 15:22:23 +0000 hourly 1 http://blog.sjinks.pro/security/581-odesk-time-tracker-vulnerabilities/comment-page-1/#comment-2950 oDesk Time Tracker Vulnerabilities « Безопасность « Ars Longa … « Site Super Tracker Wed, 17 Feb 2010 19:02:25 +0000 http://blog.sjinks.pro/?p=581#comment-2950 [...] Today found this great post, here is a quick excerpt : oDesk Time Tracker does not verify the SSL certificate of the host it connects to thus becoming vulnerable to various Man-in-the-Middle attacks (if an attacker is able to spoof DNS for team.odesk.com — say, by setting up a fake DHCP and … Read the rest of this great post Here [...] [...] Today found this great post, here is a quick excerpt : oDesk Time Tracker does not verify the SSL certificate of the host it connects to thus becoming vulnerable to various Man-in-the-Middle attacks (if an attacker is able to spoof DNS for team.odesk.com — say, by setting up a fake DHCP and … Read the rest of this great post Here [...]

]]> http://blog.sjinks.pro/security/581-odesk-time-tracker-vulnerabilities/comment-page-1/#comment-2871 oDesk Time Tracker Vulnerabilities | Ars Longa, Vita Brevis « Site Super Tracker Sat, 06 Feb 2010 23:02:22 +0000 http://blog.sjinks.pro/?p=581#comment-2871 [...] Today found this great post, here is a quick excerpt : oDesk Time Tracker does not verify the SSL certificate of the host it connects to thus becoming vulnerable to various Man-in-the-Middle attacks (if an attacker is able to spoof DNS for team.odesk.com — say, by setting up a fake DHCP and … Read the rest of this great post Here [...] [...] Today found this great post, here is a quick excerpt : oDesk Time Tracker does not verify the SSL certificate of the host it connects to thus becoming vulnerable to various Man-in-the-Middle attacks (if an attacker is able to spoof DNS for team.odesk.com — say, by setting up a fake DHCP and … Read the rest of this great post Here [...]

]]>