Bitcoin Forum
May 04, 2024, 07:00:07 AM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Other > Beginners & Help > How are we protected from XSS?
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: How are we protected from XSS?  (Read 731 times)
joeyjoe (OP)
Full Member
***
Offline Offline

Activity: 224
Merit: 100


View Profile
August 16, 2011, 10:09:56 AM
 #1
Just a thought as I had done alot of research on this subject before. How easy would it be for a hacker to obtain your login details or even steal your cookie file from a bitcoin trade site and use it to steal your coins?

Every couple of months someone will find a vulnerability in a system. Bit coins only just starting to take off so should we see an increase of stolen passwords?
Bitcoin PHP programmer for hire! (HTML / CSS / JQuery / AJAX / .NET).
1714806007
Hero Member
*
Offline Offline

Posts: 1714806007

View Profile Personal Message (Offline)

Ignore
1714806007
1714806007
Reply with quote  #2
1714806007
Report to moderator
1714806007
Hero Member
*
Offline Offline

Posts: 1714806007

View Profile Personal Message (Offline)

Ignore
1714806007
1714806007
Reply with quote  #2
1714806007
Report to moderator
1714806007
Hero Member
*
Offline Offline

Posts: 1714806007

View Profile Personal Message (Offline)

Ignore
1714806007
1714806007
Reply with quote  #2
1714806007
Report to moderator
Be very wary of relying on JavaScript for security on crypto sites. The site can change the JavaScript at any time unless you take unusual precautions, and browsers are not generally known for their airtight security.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
newminerr
Member
**
Offline Offline

Activity: 147
Merit: 11

The day to rise has come.


View Profile
August 16, 2011, 10:20:18 AM
 #2
Protecting as a site owner -> use htmlentities before you print a variable.
Protecting as a user -> use noscript :]

But when it comes to web security XSS is not the worst.
XSS [if exists] won't give the hacker your password, only the cookies, if you logout and logged in again the hacker can't do anything.

Unlike XSS, RCE or SQL injection can do serious damage to both the site and users...
joeyjoe (OP)
Full Member
***
Offline Offline

Activity: 224
Merit: 100


View Profile
August 16, 2011, 11:03:34 AM
 #3
Only known about bitcoin a day and as intriguing as it is, theres wayyyy too many storys about hacked accounts and stolen bitcoins.
Bitcoin PHP programmer for hire! (HTML / CSS / JQuery / AJAX / .NET).
newminerr
Member
**
Offline Offline

Activity: 147
Merit: 11

The day to rise has come.


View Profile
August 16, 2011, 11:30:27 AM
 #4
Most of the time the negligence of the user is the problem.
vv01f
Sr. Member
****
Offline Offline

Activity: 314
Merit: 250


View Profile
August 16, 2011, 01:06:58 PM
 #5
the more important question would be "how can Bitcoin prosper when they can get lost forever?" Wink
if the available amount is decreasing by time.. what would be a critical mass that is needed for a currency worldwide?
donations to me please send via bitcoin 1vvo1FDwSAwNdLVA1mFkM7v76XPZAAUfb
a good European exchange: bitcoin.de (ref-link)
Gabi
Legendary
*
Offline Offline

Activity: 1148
Merit: 1008


If you want to walk on water, get out of the boat


View Profile
August 16, 2011, 01:17:45 PM
 #6
Quote from: vv01f on August 16, 2011, 01:06:58 PM
the more important question would be "how can Bitcoin prosper when they can get lost forever?" Wink
if the available amount is decreasing by time.. what would be a critical mass that is needed for a currency worldwide?
Since you can move the decimal as you need, any amount of BTC is enough for the world. You would then use like 0.000000000000000000001 btc, we will make a client that wil say that it is 1mini-BTC and you are fine



After all, "how can gold prosper when it can get lost forever?" What about all the gold in the ships that sunk? For thousands of years it was lost!

░░░░░░░░▄█▀░░░░░▀█▄░░░░░░░
░░░░░░▄██▀░░░░░░░▀██▄░░░░░
░░░░░▄███░░░░░░░░▄███▄░░░░
░░░░░▄████▄█████▄█████░░░░
░░▄████████▀▀▀▀████████░░
▄███▀██████▄▄██████▀███▄
▄██▀▄██▀▀███▀███▀▀██▄▀██
▀█░░░▀██░░░▀█▄█▀░░▄██▀░░░
░░░░░░▀██▄▄███▄▄██▀░░░░░
░░░░░░░▀███████████▀░░░░░░
░░░░░░░▄█████████▄░░░░░
░░░▀█▄████▀▀░░░▀▀████▄█▀░░
..
SomeoneWeird
Hero Member
*****
Offline Offline

Activity: 700
Merit: 500


View Profile
August 16, 2011, 01:18:00 PM
 #7
Quote from: vv01f on August 16, 2011, 01:06:58 PM
the more important question would be "how can Bitcoin prosper when they can get lost forever?" Wink
if the available amount is decreasing by time.. what would be a critical mass that is needed for a currency worldwide?

bitcoins are divisible by 8, so we can just move the decimal value if theres ever a need to.
Pages: [1]
  Print  
Bitcoin Forum > Other > Beginners & Help > How are we protected from XSS?
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!