Session/Cookie alone does not secure your web application – CSRF
Posted by Sajith M.R in general on 13. Nov, 2009 | 0 Comments
Guess what will happen if you add an image like below in your html page:
<img src=”http://mail.google.com/mail/?logout&hl=en” />
It does not appear in page, but your google account in another window or another tab will get logoff. Now an external website could logout you from your gmail or orkut.
IF you coded your website to delete a photo [...]
Save your passwords and secured files using TrueCrypt
Posted by Sajith M.R in general on 20. Mar, 2009 | 3 Comments
Hello programmer,
If you are a programmer, you might experience on saving your different ftp , email , website credintals (usernames and passwords) . Someone uses google documents for saving passwords. Some use email itself as a password storing medium. To be more secured, you have to save your passwords in you local machine rather than [...]
Find who is invisible in gmail chat (Gtalk)
Posted by Sajith M.R in webworld on 04. Nov, 2008 | 37 Comments
Many people already blogged about this article. I made the same experiment. It works.
If you want to find say xyz@gmail.com is invisible or not.
Open your gtalk app and type this email address in top search textbox
Click the profile, it opens in new window as usual
Click on the down arrow button in the top right corner [...]
