Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
This group should mostly be dealing with how web applications enable networking security issues that are otherwise not there. Everything is being tunneled over port 80 now so what does that enable and how do we fix it? 

Current Page: 1 of 1
Results 1 - 3 of 3
5 years ago
johnnycocaine
@id - Interesting, thanks. I just wondered if anyone had ever used it for anything.
Forum: Networking
5 years ago
johnnycocaine
No, you don't have to be there when they log in for Basic Auth because every subsequent request will have the header "Authentication Basic <somestring>" where somestring is like a session id - only it will be the same every time that user:pass combination logs in. If you have that, you don't need the actual username or password.
Forum: Networking
5 years ago
johnnycocaine
So this is not just tunneling another higher level protocol over port 80 to get to the open port? But actually recreating TCP/IP as a series of http requests/responses? Wait, so you need TCP/IP to run http... then you're going to rewrite TCP/IP to run on top of http? And this was done probably because there was a corporate policy saying "only port 80 can be open." It does make me c
Forum: Networking
Current Page: 1 of 1