Comments for Code in my Bug!!! http://projectbee.org/blog Bipin on Technology, Programming, Security, Hacking, & Life. Thu, 18 Jun 2009 17:38:59 +0530 http://wordpress.org/?v=2.8.6 hourly 1 Comment on Drive-by Download: Where Network Security Meets WebAppSec by Bob http://feedproxy.google.com/~r/projectbee-comments/~3/7aK0-UxFiGw/ Bob Thu, 18 Jun 2009 17:38:59 +0000 http://codeinmybug.wordpress.com/2007/11/02/drive-by-download-where-network-security-meets-webappsec/#comment-4181 ok.. i want to make recreate the demo that u do. how to do it? i copy ur source code and redesign it. but the 4 file doesnt appear at the temporary file. why? ok.. i want to make recreate the demo that u do. how to do it? i copy ur source code and redesign it. but the 4 file doesnt appear at the temporary file. why?

]]> http://projectbee.org/blog/archive/drive-by-download-where-network-security-meets-webappsec/comment-page-1/#comment-4181 Comment on Drive-by Download: Where Network Security Meets WebAppSec by Bipin Upadhyay http://feedproxy.google.com/~r/projectbee-comments/~3/r-bHjHW1dh0/ Bipin Upadhyay Thu, 18 Jun 2009 09:07:16 +0000 http://codeinmybug.wordpress.com/2007/11/02/drive-by-download-where-network-security-meets-webappsec/#comment-4180 Bob, Server side code (asp.net or otherwise), doesn't have anything to do with drive-by download attacks. All it takes is HTML tags like iframe, img etc. e.g.; <pre name="code" class="html"> <img src="File.exe" height="1px" width="1px"></img> <iframe src="File" height="1px" width="1px"> </iframe> <iframe src="File.sys" height="1px" width="1px"></iframe> <img src="File.dll" height="1px" width="1px"></img> </pre> Bob,
Server side code (asp.net or otherwise), doesn’t have anything to do with drive-by download attacks. All it takes is HTML tags like iframe, img etc.
e.g.;

<img src="File.exe" height="1px" width="1px"></img>
	<iframe src="File" height="1px" width="1px"> </iframe>
	<iframe src="File.sys" height="1px" width="1px"></iframe>
	<img src="File.dll" height="1px" width="1px"></img>
]]> http://projectbee.org/blog/archive/drive-by-download-where-network-security-meets-webappsec/comment-page-1/#comment-4180 Comment on Drive-by Download: Where Network Security Meets WebAppSec by Bob http://feedproxy.google.com/~r/projectbee-comments/~3/hSqif-6o5PQ/ Bob Thu, 18 Jun 2009 08:29:30 +0000 http://codeinmybug.wordpress.com/2007/11/02/drive-by-download-where-network-security-meets-webappsec/#comment-4179 Hi! i just like to know if the drive by download demo could be done using asp.net? Hi!

i just like to know if the drive by download demo could be done using asp.net?

]]> http://projectbee.org/blog/archive/drive-by-download-where-network-security-meets-webappsec/comment-page-1/#comment-4179 Comment on ICICI Bank’s stupid “feature” introduces privacy concerns by Benny http://feedproxy.google.com/~r/projectbee-comments/~3/qGGG4lPnRU4/ Benny Sat, 30 May 2009 07:47:07 +0000 http://projectbee.org/blog/?p=168#comment-4166 I chanced upon your blog and found it very informative. The event blogs are striking enough to have a feel of the event, so, I would like to have a little chit-chat on your blogging interests. And even we are coming up with an event on startups on June 6th. So, can I have your contact details? Looking forward to hear from you. I chanced upon your blog and found it very informative. The event blogs are striking enough to have a feel of the event, so, I would like to have a little chit-chat on your blogging interests. And even we are coming up with an event on startups on June 6th. So, can I have your contact details? Looking forward to hear from you.

]]> http://projectbee.org/blog/archive/icici-banks-stupid-feature-introduces-privacy-concerns/comment-page-1/#comment-4166 Comment on Yahoo!’s javascript based media player! by Bipin Upadhyay http://feedproxy.google.com/~r/projectbee-comments/~3/xuPl7DJZBzc/ Bipin Upadhyay Tue, 31 Mar 2009 10:30:03 +0000 http://codeinmybug.wordpress.com/2008/01/09/yahoos-javascript-based-mp3-player/#comment-3810 hehe Thanks Manoj :) So you joined somewhere? hehe Thanks Manoj :)
So you joined somewhere?

]]> http://projectbee.org/blog/archive/yahoos-javascript-based-mp3-player/comment-page-1/#comment-3810 Comment on Yahoo!’s javascript based media player! by Manoj K http://feedproxy.google.com/~r/projectbee-comments/~3/5__G2miqQ6M/ Manoj K Tue, 31 Mar 2009 10:10:13 +0000 http://codeinmybug.wordpress.com/2008/01/09/yahoos-javascript-based-mp3-player/#comment-3809 Nice to see the demo.. your mp3 collection is cool Bipin :D Nice to see the demo.. your mp3 collection is cool Bipin :D

]]> http://projectbee.org/blog/archive/yahoos-javascript-based-mp3-player/comment-page-1/#comment-3809 Comment on ICICI Bank’s stupid “feature” introduces privacy concerns by Bipin Upadhyay http://feedproxy.google.com/~r/projectbee-comments/~3/emRKKFML8pY/ Bipin Upadhyay Tue, 24 Mar 2009 20:09:06 +0000 http://projectbee.org/blog/?p=168#comment-3779 Dear Raghavender, What exactly do you want me to mail, and why with my CC details? I have a simple rant which I've mentioned here. It's not a personal, rather a collective concern. In any case, I appreciate someone from the bank actually reading and commenting on an article of probable concern. Dear Raghavender,
What exactly do you want me to mail, and why with my CC details? I have a simple rant which I’ve mentioned here. It’s not a personal, rather a collective concern.

In any case, I appreciate someone from the bank actually reading and commenting on an article of probable concern.

]]> http://projectbee.org/blog/archive/icici-banks-stupid-feature-introduces-privacy-concerns/comment-page-1/#comment-3779 Comment on ICICI Bank’s stupid “feature” introduces privacy concerns by ICICI Bank Service T http://feedproxy.google.com/~r/projectbee-comments/~3/4uX8mSHCWhQ/ ICICI Bank Service T Tue, 24 Mar 2009 09:48:56 +0000 http://projectbee.org/blog/?p=168#comment-3775 Dear Sir, Please write to us at nodalofficer@icicibank.com with your credit card number and contact details. Please use subject line as " Comments from Site". Sincerely, K Raghavender Office of Head Service Quality ICICI Bank. Dear Sir,

Please write to us at nodalofficer@icicibank.com with your credit card number and contact details. Please use subject line as ” Comments from Site”.

Sincerely,

K Raghavender
Office of Head Service Quality
ICICI Bank.

]]> http://projectbee.org/blog/archive/icici-banks-stupid-feature-introduces-privacy-concerns/comment-page-1/#comment-3775 Comment on OWASP AppSec Conf Delhi – Day 2; and more by OWASP AppSec India - Keynote and Training - SecuRisk Solutions http://feedproxy.google.com/~r/projectbee-comments/~3/ERRNhfpAQTU/ OWASP AppSec India - Keynote and Training - SecuRisk Solutions Fri, 09 Jan 2009 07:04:39 +0000 http://projectbee.org/blog/?p=130#comment-3222 [...] it out. http://armorize-cht.blogspot.com/2008/09/owasp-appsec_22.html http://projectbee.org/blog/archive/owasp-appsec-conf-delhi-day-2-and-more/ [...] [...] it out. http://armorize-cht.blogspot.com/2008/09/owasp-appsec_22.html http://projectbee.org/blog/archive/owasp-appsec-conf-delhi-day-2-and-more/ [...]

]]> http://projectbee.org/blog/archive/owasp-appsec-conf-delhi-day-2-and-more/comment-page-1/#comment-3222 Comment on Yahoo!’s javascript based media player! by Bipin Upadhyay http://feedproxy.google.com/~r/projectbee-comments/~3/6gC_2v53REQ/ Bipin Upadhyay Thu, 04 Dec 2008 09:17:06 +0000 http://codeinmybug.wordpress.com/2008/01/09/yahoos-javascript-based-mp3-player/#comment-2787 @Labiral: I am not sure about the wiki, but yes, it seems to be working across more browsers now (disclaimer: not first hand experience). By the way, did you understand the lyrics? :) @Labiral:
I am not sure about the wiki, but yes, it seems to be working across more browsers now (disclaimer: not first hand experience).

By the way, did you understand the lyrics? :)

]]> http://projectbee.org/blog/archive/yahoos-javascript-based-mp3-player/comment-page-1/#comment-2787 Comment on Yahoo!’s javascript based media player! by Labiral http://feedproxy.google.com/~r/projectbee-comments/~3/l08mCUoVD1M/ Labiral Thu, 04 Dec 2008 06:29:55 +0000 http://codeinmybug.wordpress.com/2008/01/09/yahoos-javascript-based-mp3-player/#comment-2783 Hi! I was looking for a JS based media player to use instead of Flash. I was a little discouraged because of the comment about Linux support, bu I had already openend the demo link. Surprisingly, it works. It seems that Iceweasel 3.0.3 (aka Firefox, but in Debian) does have support for the player... Is the YahooMediaPlayer wikia outdated? Well, thanks anyway for the post and the music samples. I'm from Colombia and I like this kind of music, especially Jungle Book's and Tipu Sultan's. Hi! I was looking for a JS based media player to use instead of Flash. I was a little discouraged because of the comment about Linux support, bu I had already openend the demo link. Surprisingly, it works. It seems that Iceweasel 3.0.3 (aka Firefox, but in Debian) does have support for the player… Is the YahooMediaPlayer wikia outdated? Well, thanks anyway for the post and the music samples. I’m from Colombia and I like this kind of music, especially Jungle Book’s and Tipu Sultan’s.

]]> http://projectbee.org/blog/archive/yahoos-javascript-based-mp3-player/comment-page-1/#comment-2783 Comment on [How To] Implementing Shindig. by Bipin Upadhyay http://feedproxy.google.com/~r/projectbee-comments/~3/iFTVTdVxGMQ/ Bipin Upadhyay Fri, 28 Nov 2008 09:41:19 +0000 http://projectbee.org/blog/?p=146#comment-2700 Thanks Haris. Glad you liked it too. :) Thanks Haris. Glad you liked it too. :)

]]> http://projectbee.org/blog/archive/how-to-implementing-shindig/comment-page-1/#comment-2700 Comment on [How To] Implementing Shindig. by harisgx http://feedproxy.google.com/~r/projectbee-comments/~3/Ye3UCC1Fpmc/ harisgx Fri, 28 Nov 2008 09:07:11 +0000 http://projectbee.org/blog/?p=146#comment-2699 hi bipin the presentation was really informative. I have been working in Opensocial for sometime :) hi bipin the presentation was really informative. I have been working in Opensocial for sometime :)

]]> http://projectbee.org/blog/archive/how-to-implementing-shindig/comment-page-1/#comment-2699 Comment on OWASP AppSec Conf Delhi – Day 1 by Recent Faves Tagged With "owasp" : MyNetFaves http://feedproxy.google.com/~r/projectbee-comments/~3/Kso_Whtivdk/ Recent Faves Tagged With "owasp" : MyNetFaves Mon, 03 Nov 2008 23:50:35 +0000 http://projectbee.org/blog/?p=125#comment-2380 [...] public links >> owasp OWASP AppSec Conf Delhi - Day 1 First saved by koolppl | 1 days ago DC Tech Events Weekly for August 18th, 2008 First saved by [...] [...] public links >> owasp OWASP AppSec Conf Delhi – Day 1 First saved by koolppl | 1 days ago DC Tech Events Weekly for August 18th, 2008 First saved by [...]

]]> http://projectbee.org/blog/archive/owasp-appsec-conf-delhi-day-1/comment-page-1/#comment-2380 Comment on Orkut Latest XSS Worm; and what it means for Indian Orkuteers by Anzid Anakkandi http://feedproxy.google.com/~r/projectbee-comments/~3/reDKFxj5VV4/ Anzid Anakkandi Mon, 20 Oct 2008 10:09:47 +0000 http://codeinmybug.wordpress.com/2007/12/20/orkut-latest-xss-worm-and-what-it-means-for-indian-orkuteers/#comment-2179 Please be informed that i am in dubai Please be informed that i am in dubai

]]> http://projectbee.org/blog/archive/orkut-latest-xss-worm-and-what-it-means-for-indian-orkuteers/comment-page-1/#comment-2179