Slashdot Mirror

← Back to Stories (view on slashdot.org)

TinyDisk, A File System on Someone Else's Web App

Posted by ScuttleMonkey on from the all-your-byte-are-belong-to-us dept.

Psy writes "I attended Phreaknic this weekend where Acidus released TinyDisk, a shared file system that runs on top of TinyURL or his own implementation NanoURL. TinyDisk compresses a file, encrypts it, and dices it into clusters. Each cluster is submitted to TinyURL as if it were a url. This clusters can be read back out of the database, making TinyDisk a global file system anyone can use. There are safeguards in the default config to prevent people from dumping gigs of MP3s into TinyURL. While file-system-on-web-applications are nothing new (GMail file system anyone?) this hack shows how easy it is to accidentally design a web application insecurely despite the default PHP protections. See his presentation for more info"

12 of 188 comments (clear)

  1. Problems ahead? ;) by sznupi · · Score: 4, Funny

    TinyURL might become not so tiny anymore...

    --
    One that hath name thou can not otter
  2. NanoURL review by Anonymous Coward · · Score: 5, Funny

    I like NanoURL but it scratches real easily.

  3. Default PHP protections? by Egregius · · Score: 4, Funny

    Bwahahahahaha.

  4. Re:I'm sure this won't be abused by FidelCatsro · · Score: 1, Funny

    I don't think it would constitute a DOS attack (unless someone was trying to DOS it deliberately using said program) it would just be overloading the servers. if it did constitute one Slashdot would have a criminal record the length of the Nile .

    --
    The only things certain in war are Propaganda and Death. You can never be sure which is which though
  5. Is it by manojar · · Score: 2, Funny

    is it another way to backup more porn/mp3s online?

    --
    Manojar - pronounced like Manager
  6. Re:TinyDisk? by orasio · · Score: 1, Funny
    Maybe you sould review your logs:
    2005-10-25 04:55:23 - Uploading DNA .....
    2005-10-25 04:55:35 - ftp: kleenex.tissue: Unknown host
    2005-10-25 04:55:36 - DNA Upload failed. Cleaning up... OK.
    2005-10-25 04:55:46 - Retrying Upload DNA .....
  7. Re:Insecure? Really? by xappax · · Score: 4, Funny

    Is it hyperbole day on Slashdot and no one told me?

    Hyperbole day? That's the most ridiculous thing I've ever heard in my entire life!

  8. Greatest FAQ answer ever. by jdludlow · · Score: 5, Funny

    From the TinyDisk FAQ:

    Q: This damn thing doesn't work on large files! #@%& You!
    A: Did you not read the manual? Man I wish I could punch you in the face over TCP/IP! Change the config file's MaxSize line. By default the limit is 2 megs.

  9. Slashdot FS by Borf · · Score: 1, Funny

    SDFS010101M5&AI2!$3D$@8G)O861C87-T3:6YG('-YW1E;2X@ ($1U8VLN"FAE`

  10. Re:Why not go further? by John+Nowak · · Score: 2, Funny

    I have no idea what you're talking about. Get a clue.

    Okay, back to working on my perpetual motion machine!

  11. Re:TinyDisk? by hobbit · · Score: 2, Funny
    2005-10-25 04:54:53 - Attempting to contact external host
    2005-10-25 04:54:56 - Connection refused
    2005-10-25 04:55:34 - Attempting to contact external host
    2005-10-25 04:55:36 - Connection refused
    2005-10-25 04:55:38 - All hosts unreachable except localhost
    2005-10-25 04:55:40 - Connecting to loopback interface
    --
    "Wise men talk because they have something to say; fools, because they have to say something" - Plato
  12. Re:It's simple. by Syberghost · · Score: 2, Funny

    I for one see great potential in this for the likes of Al Qaida (you know, where better to hide your building hitlist than on tinyurl).

    Oh, great; now we're all gonna have to remember "http://tinyurl.nsa.gov" instead of "http://tinyurl.com".