Bitcoin Forum
May 07, 2024, 02:46:43 AM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > [CLOSED] ZIGGAP crowd sourced security auditing. 80.5 BTC in potential winnings!
Pages: « 1 [2]  All
« previous topic next topic »
  Print  
Author Topic: [CLOSED] ZIGGAP crowd sourced security auditing. 80.5 BTC in potential winnings!  (Read 2406 times)
Mikej0h
Member
**
Offline Offline

Activity: 117
Merit: 100

Life is short, play long


View Profile
January 03, 2013, 11:16:39 PM
 #21
Quote from: ZIGGAP on January 03, 2013, 10:51:10 PM
Quote from: Mikej0h on January 03, 2013, 10:45:42 PM
Not a security flaw, but bug:
Go to Buy Bitcoins -> Select nothing ("Select payment method") -> Enter address (12gKdNCYoEZ9SfnRkiouNJV2QrCdyC8ooD) -> Error page "Bad gateway"

Edit: and please include "labels" for the textboxes, I had to look in the source which field is for what (IE)...

The text boxes have labels in them, until you click in the text box and start typing.

I understand what you mean, I see them in the source however they not show up in my Internet Explorer...

EDIT; see screenshot below
1715050003
Hero Member
*
Offline Offline

Posts: 1715050003

View Profile Personal Message (Offline)

Ignore
1715050003
1715050003
Reply with quote  #2
1715050003
Report to moderator
1715050003
Hero Member
*
Offline Offline

Posts: 1715050003

View Profile Personal Message (Offline)

Ignore
1715050003
1715050003
Reply with quote  #2
1715050003
Report to moderator
1715050003
Hero Member
*
Offline Offline

Posts: 1715050003

View Profile Personal Message (Offline)

Ignore
1715050003
1715050003
Reply with quote  #2
1715050003
Report to moderator
The Bitcoin network protocol was designed to be extremely flexible. It can be used to create timed transactions, escrow transactions, multi-signature transactions, etc. The current features of the client only hint at what will be possible in the future.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
fcmatt
Legendary
*
Offline Offline

Activity: 2072
Merit: 1001


View Profile
January 03, 2013, 11:37:10 PM
 #22
Ssh should be using /etc/hosts.allow.  no reason to let every IP connect to it.
paybitcoin
Member
**
Offline Offline

Activity: 85
Merit: 10


1h79nc


View Profile WWW
January 04, 2013, 05:30:48 AM
 #23
And purchase another server to run ejabberd on for frontend.ziggap.com. Smiley Unless that's part of the service somehow.

Quote from: fcmatt on January 03, 2013, 11:37:10 PM
Ssh should be using /etc/hosts.allow.  no reason to let every IP connect to it.
You could also set up a service like OpenVPN (UDP + drops any packets that don't have the HMAC = very good stealth) and then SSH & XMPP inside the VPN so there are no TCP ports open to the outside world except 80 and 443.

Surface area, etc.
Pages: « 1 [2]  All
  Print  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > [CLOSED] ZIGGAP crowd sourced security auditing. 80.5 BTC in potential winnings!
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!