New Stuff
Global Rank: 229
Totalscore: 93001
Posts: 1680
Thanks: 1358
UpVotes: 920
Registered: 16y 281d
Last Seen: 0s
The User is Online
New Stuff
Jun 28, 2014 - 19:04:19 (10y 149d)
Jun 28, 2014 - 19:04:19 (10y 149d)
I am happy to announce 
There were a few new things uploaded today:
---
1) New challenge ahead!
Disclosures got inspired by dloser, who found some low to medium information disclosure vulnerability in GWF3/WC5 code a few days ago.
The problem is still unfixed.
So beside i think this challenge is really well done and a new exploit gem, you will also know a 0day bug here until i fix it (hopefully soon). I really hope you will enjoy it.
Changeset: 2701.
---
2) I have added a new feature to the Account Module.
You can now OptIn to recording your IPs and view the list anytime.
You can enable Security alert emails for when: a) IP changed, b) ISP / hostname changed, c) UserAgent changed.
Probably this has one or two bugs left, but hopfully does not lead to unusable accounts
Changesets: 2699 and 2700.
---
3) A fixed bug in the login/session handling for people with highly dynamic IP.
As you should know you can untick the "LockIP" checkmark in the login to be able to use the site as authenticated user.
The "Lock" did not get deleted at any time, and sessions are very permanent.
These people could not login at all when they forgot the checkmark in a quick click.
Changesets: 2696 and 2697.
---
Happy Challenging!
gizmore
There were a few new things uploaded today:
---
1) New challenge ahead!
Disclosures got inspired by dloser, who found some low to medium information disclosure vulnerability in GWF3/WC5 code a few days ago.
The problem is still unfixed.
So beside i think this challenge is really well done and a new exploit gem, you will also know a 0day bug here until i fix it (hopefully soon). I really hope you will enjoy it.
Changeset: 2701.
---
2) I have added a new feature to the Account Module.
You can now OptIn to recording your IPs and view the list anytime.
You can enable Security alert emails for when: a) IP changed, b) ISP / hostname changed, c) UserAgent changed.
Probably this has one or two bugs left, but hopfully does not lead to unusable accounts
Changesets: 2699 and 2700.
---
3) A fixed bug in the login/session handling for people with highly dynamic IP.
As you should know you can untick the "LockIP" checkmark in the login to be able to use the site as authenticated user.
The "Lock" did not get deleted at any time, and sessions are very permanent.
These people could not login at all when they forgot the checkmark in a quick click.
Changesets: 2696 and 2697.
---
Happy Challenging!
gizmore
The geeks shall inherit the properties and methods of object earth.
tunelko, quangntenemy, TheHiveMind, Z, balicocat, Ge0, samuraiblanco, arraez, jcquinterov, hophuocthinh, alfamen2, burhanudinn123, Ben_Dover, stephanduran89, braddie0, SwolloW, dangarbri, csuquvq have subscribed to this thread and receive emails on new posts.
1 people are watching the thread at the moment.
This thread has been viewed 3940 times.
1 people are watching the thread at the moment.
This thread has been viewed 3940 times.