[liberationtech] PrivacyBox review?
Steve Weis
steveweis at gmail.com
Tue Feb 5 09:40:08 PST 2013
I wouldn't use this.
The code available on their site is 4 years old and mostly poorly-commented
Perl scripts. I gave it a quick look and it looks like they may have some
basic web application security mistakes, e.g. transmitting sensitive values
as URL parameters and not properly validating input.
On Tue, Feb 5, 2013 at 2:53 AM, KheOps <kheops at ceops.eu> wrote:
> Hi all,
>
> Has anyone ever reviewed the code of PrivacyBox from a security point of
> view?
>
> Thank you,
> KheOps
>
>
> --
> Unsubscribe, change to digest, or change password at:
> https://mailman.stanford.edu/mailman/listinfo/liberationtech
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20130205/8be1ba9b/attachment.html>
More information about the liberationtech
mailing list