Y
Hacker News
new
|
ask
|
show
|
jobs
by
Piskvorrr
2693 days ago
As in, anybody with a link to /delete could delete things? No identification/authentication/authorization needed?
1 comments
klyrs
2692 days ago
> I spent the next few days fixing several of problems that conspired to make that happen...
Yes, I was a total n00b in 2001. But then, so was e-commerce.
link
klyrs
2692 days ago
and fwiw, I knew exactly how bad our security was... I kept my boss informed, but he had different priorities until Alexa "hacked" our mainpage :p
link
Yes, I was a total n00b in 2001. But then, so was e-commerce.