RE: A lesson in security by obscurity...
I got to 8 and im tired...time to go play golf...try for 9 tonight. -Original Message- From: Burns, John D [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 3:45 PM To: CF-Talk Subject: SOT: A lesson in security by obscurity... I know the debate has come up about whether or not security by obscurity is really any security at all. I thought everyone would enjoy trying this out. Basically you have to try to "hack" your way through a site that uses _javascript_ for its security and you have to find ways around it. Enjoy. http://scifi.pages.at/hackits/ John [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
I did the same. 9 seems like a lot of quess work. Up to that point it was a test of working around _javascript_ security and from what I can tell, to get to 9 you have to guess the name of the next page. If anyone takes the time to get there please share :-) John -Original Message- From: Tony Weeg [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 4:40 PM To: CF-Talk Subject: RE: A lesson in security by obscurity... I got to 8 and im tired...time to go play golf...try for 9 tonight. -Original Message- From: Burns, John D [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 3:45 PM To: CF-Talk Subject: SOT: A lesson in security by obscurity... I know the debate has come up about whether or not security by obscurity is really any security at all. I thought everyone would enjoy trying this out. Basically you have to try to "hack" your way through a site that uses _javascript_ for its security and you have to find ways around it. Enjoy. http://scifi.pages.at/hackits/ John [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
Yeah, 9's where I'm at also... -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 3:54 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I did the same. 9 seems like a lot of quess work. Up to that point it > was a test of working around _javascript_ security and from what I can > tell, to get to 9 you have to guess the name of the next page. If > anyone takes the time to get there please share :-) > > John > > -Original Message- > From: Tony Weeg [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 4:40 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I got to 8 and im tired...time to go play golf...try for 9 tonight. > > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 3:45 PM > To: CF-Talk > Subject: SOT: A lesson in security by obscurity... > > I know the debate has come up about whether or not security by obscurity > is really any security at all. I thought everyone would enjoy trying > this out. > Basically you have to try to "hack" your way through a site that uses > _javascript_ for its security and you have to find ways around it. Enjoy. > > http://scifi.pages.at/hackits/ > > John > > > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
Actually, it's not so much guessing. The answers on the page itself :) -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 3:54 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I did the same. 9 seems like a lot of quess work. Up to that point it > was a test of working around _javascript_ security and from what I can > tell, to get to 9 you have to guess the name of the next page. If > anyone takes the time to get there please share :-) > > John > > -Original Message- > From: Tony Weeg [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 4:40 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I got to 8 and im tired...time to go play golf...try for 9 tonight. > > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 3:45 PM > To: CF-Talk > Subject: SOT: A lesson in security by obscurity... > > I know the debate has come up about whether or not security by obscurity > is really any security at all. I thought everyone would enjoy trying > this out. > Basically you have to try to "hack" your way through a site that uses > _javascript_ for its security and you have to find ways around it. Enjoy. > > http://scifi.pages.at/hackits/ > > John > > > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
My initial perception as well. And though I haven't solved it, I did notice that more people signed the level 9 book than the level 8 book, which seems to indicate that 8 caused less people to give up at that point. Cheers, barneyb > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 1:54 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I did the same. 9 seems like a lot of quess work. Up to > that point it > was a test of working around _javascript_ security and from what I can > tell, to get to 9 you have to guess the name of the next page. If > anyone takes the time to get there please share :-) > > John > > -Original Message- > From: Tony Weeg [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 4:40 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I got to 8 and im tired...time to go play golf...try for 9 tonight. > > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 3:45 PM > To: CF-Talk > Subject: SOT: A lesson in security by obscurity... > > I know the debate has come up about whether or not security > by obscurity > is really any security at all. I thought everyone would enjoy trying > this out. > Basically you have to try to "hack" your way through a site that uses > _javascript_ for its security and you have to find ways around > it. Enjoy. > > http://scifi.pages.at/hackits/ > > John > > > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
Re: A lesson in security by obscurity...
I also got stuck at 9. Intersting discovery that going back to the very first home page and viewing source showed me that he was redirecting traffic from: http://www.7er-forum.com/forum/viewthread.php?tid=13456 To http://www.disney.com I checked out that forum and it has all the solutions in it, but #9 appears to be wrong. So he must have changed it after he realized the codes had all been leaked. Still stuck at 9. -Bret Burns, John D wrote: > I did the same. 9 seems like a lot of quess work. Up to that point it > was a test of working around _javascript_ security and from what I can > tell, to get to 9 you have to guess the name of the next page. If > anyone takes the time to get there please share :-) > > John > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
I did the same. 9 seems like a lot of quess work. Up to that point it was a test of working around _javascript_ security and from what I can tell, to get to 9 you have to guess the name of the next page. If anyone takes the time to get there please share :-) A couple free tools helps you scan the server, spider the site and go to town. :-) [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
You guys are making it a lot harder than it is. It's probably the simplest security measure up to that point. Well maybe not easier than 1. -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Michael T. Tangorre [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 4:31 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I did the same. 9 seems like a lot of quess work. Up to that point it > was a test of working around _javascript_ security and from what I can > tell, to get to 9 you have to guess the name of the next page. If > anyone takes the time to get there please share :-) > > > > A couple free tools helps you scan the server, spider the site and go to > town. :-) > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
What free tools do you speak of? Along with that, anybody know of any good security classes (online or otherwise) that one could take for people like me? By that I mean a 'normal' CF programmer with just enough knowledge of most things computer related to be dangerous... A local community college near here *used* to teach it, but the guy knew a little too much (former teacher of mine) and gave out that info, and I don't think that went over too well. Ray At 05:31 PM 4/21/2004, you wrote: >I did the same. 9 seems like a lot of quess work. Up to that point it >was a test of working around _javascript_ security and from what I can >tell, to get to 9 you have to guess the name of the next page. If >anyone takes the time to get there please share :-) > > > >A couple free tools helps you scan the server, spider the site and go to >town. :-) > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
Darn it! I'm not getting any work done now! I'm up to level 13. I hate being compulsive -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Marlon Moyer > Sent: Wednesday, April 21, 2004 4:34 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > You guys are making it a lot harder than it is. It's probably the > simplest security measure up to that point. Well maybe not easier than > 1. > > > -- > Marlon Moyer, Sr. Internet Developer > American Contractors Insurance Group > phone: 972.687.9445 > fax: 972.687.0607 > mailto:[EMAIL PROTECTED] > www.acig.com > > > > -Original Message- > > From: Michael T. Tangorre [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, April 21, 2004 4:31 PM > > To: CF-Talk > > Subject: RE: A lesson in security by obscurity... > > > > I did the same. 9 seems like a lot of quess work. Up to that point > it > > was a test of working around _javascript_ security and from what I can > > tell, to get to 9 you have to guess the name of the next page. If > > anyone takes the time to get there please share :-) > > > > > > > > A couple free tools helps you scan the server, spider the site and go > to > > town. :-) > > > > > > > > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
up to 12 signed the quess book will try others tomorrow. Is kind of fun -Original Message- From: Marlon Moyer [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 3:10 PM To: CF-Talk Subject: RE: A lesson in security by obscurity... Darn it! I'm not getting any work done now! I'm up to level 13. I hate being compulsive -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Marlon Moyer > Sent: Wednesday, April 21, 2004 4:34 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > You guys are making it a lot harder than it is. It's probably the > simplest security measure up to that point. Well maybe not easier than > 1. > > > -- > Marlon Moyer, Sr. Internet Developer > American Contractors Insurance Group > phone: 972.687.9445 > fax: 972.687.0607 > mailto:[EMAIL PROTECTED] > www.acig.com > > > > -Original Message- > > From: Michael T. Tangorre [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, April 21, 2004 4:31 PM > > To: CF-Talk > > Subject: RE: A lesson in security by obscurity... > > > > I did the same. 9 seems like a lot of quess work. Up to that point > it > > was a test of working around _javascript_ security and from what I can > > tell, to get to 9 you have to guess the name of the next page. If > > anyone takes the time to get there please share :-) > > > > > > > > A couple free tools helps you scan the server, spider the site and go > to > > town. :-) > > > > > > > > > > > > _ [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
dude its killing me, ive typed everything in I can think of for that page, must you be a mindreader or something here...WTF??? and funny how all of us, well most of us tripped up on this one... tony Tony Weeg sr. web applications architect navtrak, inc. [EMAIL PROTECTED] 410.548.2337 www.navtrak.net -Original Message- From: Marlon Moyer [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 5:34 PM To: CF-Talk Subject: RE: A lesson in security by obscurity... You guys are making it a lot harder than it is. It's probably the simplest security measure up to that point. Well maybe not easier than 1. -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Michael T. Tangorre [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 4:31 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I did the same. 9 seems like a lot of quess work. Up to that point it > was a test of working around _javascript_ security and from what I can > tell, to get to 9 you have to guess the name of the next page. If > anyone takes the time to get there please share :-) > > > > A couple free tools helps you scan the server, spider the site and go to > town. :-) > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
-Original Message- From: Tony Weeg [mailto:[EMAIL PROTECTED] Sent: Wed 4/21/2004 8:14 PM To: CF-Talk Cc: Subject: RE: A lesson in security by obscurity... dude its killing me, ive typed everything in I can think of for that page, must you be a mindreader or something here...WTF??? and funny how all of us, well most of us tripped up on this one... spoiler space.. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. select all of the contents on the page with the mouse. [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
10 is a bit tricky, so far for mei think there is a big red herring that I am following on this one -Original Message- From: Tony Weeg [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 4:40 PM To: CF-Talk Subject: RE: A lesson in security by obscurity... I got to 8 and im tired...time to go play golf...try for 9 tonight. -Original Message- From: Burns, John D [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 3:45 PM To: CF-Talk Subject: SOT: A lesson in security by obscurity... I know the debate has come up about whether or not security by obscurity is really any security at all. I thought everyone would enjoy trying this out. Basically you have to try to "hack" your way through a site that uses _javascript_ for its security and you have to find ways around it. Enjoy. http://scifi.pages.at/hackits/ John _ [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
Oh really? What am I missing? John -Original Message- From: Marlon Moyer [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 5:00 PM To: CF-Talk Subject: RE: A lesson in security by obscurity... Actually, it's not so much guessing. The answers on the page itself :) -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 3:54 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I did the same. 9 seems like a lot of quess work. Up to that point it > was a test of working around _javascript_ security and from what I can > tell, to get to 9 you have to guess the name of the next page. If > anyone takes the time to get there please share :-) > > John > > -Original Message- > From: Tony Weeg [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 4:40 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > I got to 8 and im tired...time to go play golf...try for 9 tonight. > > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 3:45 PM > To: CF-Talk > Subject: SOT: A lesson in security by obscurity... > > I know the debate has come up about whether or not security by obscurity > is really any security at all. I thought everyone would enjoy trying > this out. > Basically you have to try to "hack" your way through a site that uses > _javascript_ for its security and you have to find ways around it. Enjoy. > > http://scifi.pages.at/hackits/ > > John > > > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
Marlon, I'm not sure what you mean. I tried selecting everything on the page before the _javascript_ prompt and the _javascript_ prompt page. I'm confused. Any more help? What am I looking for? John -Original Message- From: Marlon Moyer [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 21, 2004 10:23 PM To: CF-Talk Subject: RE: A lesson in security by obscurity... -Original Message- From: Tony Weeg [mailto:[EMAIL PROTECTED] Sent: Wed 4/21/2004 8:14 PM To: CF-Talk Cc: Subject: RE: A lesson in security by obscurity... dude its killing me, ive typed everything in I can think of for that page, must you be a mindreader or something here...WTF??? and funny how all of us, well most of us tripped up on this one... spoiler space.. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. .. select all of the contents on the page with the mouse. [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
spoiler space .. .. .. .. .. .. -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 22, 2004 8:39 AM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > Marlon, > > I'm not sure what you mean. I tried selecting everything on the page > before the _javascript_ prompt and the _javascript_ prompt page. I'm > confused. Any more help? What am I looking for? > > John > > -Original Message- > From: Marlon Moyer [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 10:23 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > -Original Message- > From: Tony Weeg [mailto:[EMAIL PROTECTED] > Sent: Wed 4/21/2004 8:14 PM > To: CF-Talk > Cc: > Subject: RE: A lesson in security by obscurity... > dude its killing me, ive typed everything in I can think of for that > page, must you be a mindreader or something here...WTF??? > > and funny how all of us, well most of us tripped up on this one... > > > spoiler space.. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > > select all of the contents on the page with the mouse. > > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
answer at bottom. -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 22, 2004 8:39 AM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > Marlon, > > I'm not sure what you mean. I tried selecting everything on the page > before the _javascript_ prompt and the _javascript_ prompt page. I'm > confused. Any more help? What am I looking for? > > John > > -Original Message- > From: Marlon Moyer [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 10:23 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > -Original Message- > From: Tony Weeg [mailto:[EMAIL PROTECTED] > Sent: Wed 4/21/2004 8:14 PM > To: CF-Talk > Cc: > Subject: RE: A lesson in security by obscurity... > dude its killing me, ive typed everything in I can think of for that > page, must you be a mindreader or something here...WTF??? > > and funny how all of us, well most of us tripped up on this one... > > > spoiler space.. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > > select all of the contents on the page with the mouse. > > I didn't realize it the first time, but you need to disable _javascript_, otherwise, you'll have to view the source and remove all of the font tags. If you disable _javascript_, the tags will print out black characters on a black background. Select them and you have the clue. > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
spoilers -Original Message- From: Marlon Moyer [mailto:[EMAIL PROTECTED] Sent: Thursday, April 22, 2004 9:44 AM To: CF-Talk Subject: RE: A lesson in security by obscurity... answer at bottom. -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 22, 2004 8:39 AM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > Marlon, > > I'm not sure what you mean. I tried selecting everything on the page > before the _javascript_ prompt and the _javascript_ prompt page. I'm > confused. Any more help? What am I looking for? > > John > > -Original Message- > From: Marlon Moyer [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 10:23 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > -Original Message- > From: Tony Weeg [mailto:[EMAIL PROTECTED] > Sent: Wed 4/21/2004 8:14 PM > To: CF-Talk > Cc: > Subject: RE: A lesson in security by obscurity... > dude its killing me, ive typed everything in I can think of for that > page, must you be a mindreader or something here...WTF??? > > and funny how all of us, well most of us tripped up on this one... > > > spoiler space.. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > > select all of the contents on the page with the mouse. > > > I didn't realize it the first time, but you need to disable _javascript_, > otherwise, you'll have to view the source and remove all of the font > tags. If you disable _javascript_, the tags will print out > black characters on a black background. Select them and you have the > clue. I got it by viewing source and then removing all the font tags. > > > > _ [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
Marlon, Are you using IE 6? I disabled Active Scripting in Security and the tags aren't showing up. This is driving me nuts. John -Original Message- From: Marlon Moyer [mailto:[EMAIL PROTECTED] Sent: Thursday, April 22, 2004 9:44 AM To: CF-Talk Subject: RE: A lesson in security by obscurity... answer at bottom. -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 22, 2004 8:39 AM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > Marlon, > > I'm not sure what you mean. I tried selecting everything on the page > before the _javascript_ prompt and the _javascript_ prompt page. I'm > confused. Any more help? What am I looking for? > > John > > -Original Message- > From: Marlon Moyer [mailto:[EMAIL PROTECTED] > Sent: Wednesday, April 21, 2004 10:23 PM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > -Original Message- > From: Tony Weeg [mailto:[EMAIL PROTECTED] > Sent: Wed 4/21/2004 8:14 PM > To: CF-Talk > Cc: > Subject: RE: A lesson in security by obscurity... > dude its killing me, ive typed everything in I can think of for that > page, must you be a mindreader or something here...WTF??? > > and funny how all of us, well most of us tripped up on this one... > > > spoiler space.. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > .. > > select all of the contents on the page with the mouse. > > I didn't realize it the first time, but you need to disable _javascript_, otherwise, you'll have to view the source and remove all of the font tags. If you disable _javascript_, the tags will print out black characters on a black background. Select them and you have the clue. > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
Can we move this to CF-OT, or continue in the conversation in CF-Community? Thanks [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
Nope, Firefoxbtw, this thread is continuing in CF-community. -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 22, 2004 9:02 AM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > Marlon, > > Are you using IE 6? I disabled Active Scripting in Security and the > tags aren't showing up. This is driving me nuts. > > John > > -Original Message- > From: Marlon Moyer [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 22, 2004 9:44 AM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > answer at bottom. > > -- > Marlon Moyer, Sr. Internet Developer > American Contractors Insurance Group > phone: 972.687.9445 > fax: 972.687.0607 > mailto:[EMAIL PROTECTED] > www.acig.com > > > > -Original Message- > > From: Burns, John D [mailto:[EMAIL PROTECTED] > > Sent: Thursday, April 22, 2004 8:39 AM > > To: CF-Talk > > Subject: RE: A lesson in security by obscurity... > > > > Marlon, > > > > I'm not sure what you mean. I tried selecting everything on the page > > before the _javascript_ prompt and the _javascript_ prompt page. I'm > > confused. Any more help? What am I looking for? > > > > John > > > > -Original Message- > > From: Marlon Moyer [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, April 21, 2004 10:23 PM > > To: CF-Talk > > Subject: RE: A lesson in security by obscurity... > > > > -Original Message- > > From: Tony Weeg [mailto:[EMAIL PROTECTED] > > Sent: Wed 4/21/2004 8:14 PM > > To: CF-Talk > > Cc: > > Subject: RE: A lesson in security by obscurity... > > dude its killing me, ive typed everything in I can think of for that > > page, must you be a mindreader or something here...WTF??? > > > > and funny how all of us, well most of us tripped up on this one... > > > > > > spoiler space.. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > > > select all of the contents on the page with the mouse. > > > > > > I didn't realize it the first time, but you need to disable _javascript_, > otherwise, you'll have to view the source and remove all of the font > tags. If you disable _javascript_, the tags will print out > black characters on a black background. Select them and you have the > clue. > > > > > > > > > > > > > [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]
RE: A lesson in security by obscurity...
One last note on this topic It seems that there is a problem with number 8 according to root of the site http://www.academy.dyndns.org/ "THE TRAFFIC PROBLEM IN LEVEL 8 WILL BE FIXED THURSDAY" Mark W. Breneman -Cold Fusion Developer -Network Administrator Vivid Media [EMAIL PROTECTED] www.vividmedia.com 608.270.9770 _ From: Marlon Moyer [mailto:[EMAIL PROTECTED] Sent: Thursday, April 22, 2004 9:05 AM To: CF-Talk Subject: RE: A lesson in security by obscurity... Nope, Firefoxbtw, this thread is continuing in CF-community. -- Marlon Moyer, Sr. Internet Developer American Contractors Insurance Group phone: 972.687.9445 fax: 972.687.0607 mailto:[EMAIL PROTECTED] www.acig.com > -Original Message- > From: Burns, John D [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 22, 2004 9:02 AM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > Marlon, > > Are you using IE 6? I disabled Active Scripting in Security and the > tags aren't showing up. This is driving me nuts. > > John > > -Original Message- > From: Marlon Moyer [mailto:[EMAIL PROTECTED] > Sent: Thursday, April 22, 2004 9:44 AM > To: CF-Talk > Subject: RE: A lesson in security by obscurity... > > answer at bottom. > > -- > Marlon Moyer, Sr. Internet Developer > American Contractors Insurance Group > phone: 972.687.9445 > fax: 972.687.0607 > mailto:[EMAIL PROTECTED] > www.acig.com > > > > -Original Message- > > From: Burns, John D [mailto:[EMAIL PROTECTED] > > Sent: Thursday, April 22, 2004 8:39 AM > > To: CF-Talk > > Subject: RE: A lesson in security by obscurity... > > > > Marlon, > > > > I'm not sure what you mean. I tried selecting everything on the page > > before the _javascript_ prompt and the _javascript_ prompt page. I'm > > confused. Any more help? What am I looking for? > > > > John > > > > -Original Message- > > From: Marlon Moyer [mailto:[EMAIL PROTECTED] > > Sent: Wednesday, April 21, 2004 10:23 PM > > To: CF-Talk > > Subject: RE: A lesson in security by obscurity... > > > > -Original Message- > > From: Tony Weeg [mailto:[EMAIL PROTECTED] > > Sent: Wed 4/21/2004 8:14 PM > > To: CF-Talk > > Cc: > > Subject: RE: A lesson in security by obscurity... > > dude its killing me, ive typed everything in I can think of for that > > page, must you be a mindreader or something here...WTF??? > > > > and funny how all of us, well most of us tripped up on this one... > > > > > > spoiler space.. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > .. > > > > select all of the contents on the page with the mouse. > > > > > > I didn't realize it the first time, but you need to disable _javascript_, > otherwise, you'll have to view the source and remove all of the font > tags. If you disable _javascript_, the tags will print out > black characters on a black background. Select them and you have the > clue. > > > > > > > > > > > > > _ [Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings]