After many moons of debate we have decided to bring back the Jokes Forum due to popular demand and because we like a good laugh at Neowin and what better place to find that than in its very own forum.
I haven't posted there yet because I wanted to see if wazat ;) was paying any attention to this change on the Neowin forums.
Again, most of our regular visitors will know why the forum was deleted along with very many posts but I will refresh your memory for the benefit of new users on Neowin. We had an issue where some of our younger users were exposed to forum posts that contained for the most part nudity, this is when the Jokes was combined with the "Babes" section of the forums.
We have a clear policy on Neowin that forbids the posting of pornographic images. Members who violate this will be banned without prior warning. I would like to add that "babes threads" are unacceptable even in this part of the forums. Please do not make us remove that section again.
To sum up the above, we at Neowin try to accomadate for ages 13 and up, our younger viewers are required by our "Coppa agreement" to be accompanied by a parent while browsing the forums. Please remember this while posting what you consider to be acceptable in the forums.
Also we are aware of the signup problems some users are having while using free or "banned" email addresses, this will be resolved shortly.
View: Enjoy the Jokes Forum @ Neowin
I haven't posted there yet because I wanted to see if wazat ;) was paying any attention to this change on the Neowin forums.
Again, most of our regular visitors will know why the forum was deleted along with very many posts but I will refresh your memory for the benefit of new users on Neowin. We had an issue where some of our younger users were exposed to forum posts that contained for the most part nudity, this is when the Jokes was combined with the "Babes" section of the forums.
We have a clear policy on Neowin that forbids the posting of pornographic images. Members who violate this will be banned without prior warning. I would like to add that "babes threads" are unacceptable even in this part of the forums. Please do not make us remove that section again.
To sum up the above, we at Neowin try to accomadate for ages 13 and up, our younger viewers are required by our "Coppa agreement" to be accompanied by a parent while browsing the forums. Please remember this while posting what you consider to be acceptable in the forums.
Also we are aware of the signup problems some users are having while using free or "banned" email addresses, this will be resolved shortly.
View: Enjoy the Jokes Forum @ Neowin
In the exploit described by Topf, a hacker could have commands hidden in a bogus Web page on the public Internet submitted to, say, an e-mail server within the Web surfer's own corporate network - even if that server was behind a firewall.
The vulnerability described by EOS takes a similar approach to misdirecting form submissions, but directs the data at a non-Web server within a domain space for which an unsuspecting surfer may have browser cookies.
Web browsers are supposed to give up their browser cookies only to the same Web servers that handed them out.
Web developers such as those at Ebay can specify that the cookies be revealed to any Web server whose Internet address ends in "ebay.com." That allows Ebay users to remain logged in when they move from "www.ebay.com" to "pages.ebay.com."
But it also means that the browsers of Ebay customers will give up their cookies when directed to a POP-mail server at "thompson.ebay.com."
Using Topf's HTML Form Protocol Attack to direct a bogus form submission at the TCP port reserved for POP mail - port 110 - Obscure was able to get the server to echo back the submitted data in what was that server's error messages.
By carefully crafting the data being submitted to the target server, some of the text returned in the error messages can be interpreted as valid commands by the Web browser.
Obscure said that allows a hacker to imbed JavaScript commands in his rogue form that will automatically capture and forward the stolen cookie information.
Some browsers, such as Netscape, won't allow form data to be directed at TCP ports not associated with Web protocols.
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.