How to steal a developers local database

Talk about internet security, computer security, personal security, your social security number...
Post Reply
morganism
Senior Member
Posts: 116
Joined: Tue Nov 26, 2013 9:44 pm

How to steal a developers local database

Post by morganism » Thu Sep 01, 2016 8:59 pm

DNS rebinding, and other requests.

http://bouk.co/blog/hacking-developers/

Bug or feature?
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:23.0) Gecko/20130410 Firefox/23.0

User avatar
Thrawn
Senior Member
Posts: 3106
Joined: Mon Jan 16, 2012 3:46 am
Location: Australia
Contact:

Re: How to steal a developers local database

Post by Thrawn » Thu Sep 01, 2016 10:45 pm

This is precisely why we have the default ABE rule, which forbids external websites to send requests to local addresses.
======
Thrawn
------------
Religion is not the opium of the masses. Daily life is the opium of the masses.

True religion, which dares to acknowledge death and challenge the way we live, is an attempt to wake up.
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:48.0) Gecko/20100101 Firefox/48.0

Post Reply