[Full-disclosure] reCAPTCHA Broken
1. Select Audio Captcha 2. Type in ten random words and submit 3. ??? 4. Profit! ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secu
Re: [Full-disclosure] Plain Text Password Disclosure vulnerability in rediff mail
And? Every web application sends passwords as plain text unless they are using SSL. Pretty much any "encryption" that they may do client side that isn't SSL is meaningless. I hardly see how being able to sniff passwords from a site that isn't using SSL is big news. _
