Slashdot Mirror

← Back to Stories (view on slashdot.org)

LiveJournal XSS Security Challenge

Posted by CmdrTaco on from the now-thats-a-game-worth-playing dept.

Jamesday writes "LiveJournal is offering a free permanent account and possibly other prizes to those who find new vulnerabilities in its XSS Security Challenge. LiveJournal has recently been attacked via a Firefox XSS exploit."

7 of 66 comments (clear)

  1. I have no time for this by Steev · · Score: 5, Funny

    Maybe if the prize was something useful, I might be interested. I have my hands full exploiting MySpace.

  2. Y'know... by Grendel+Drago · · Score: 4, Interesting

    ... this wouldn't even be necessary if they'd taken security seriously in the first place, instead of tacking it on as an afterthought, or using the "eh, we can probably trust all this user-submitted content" model.

    But still, good to see them taking it seriously. Now, instead of Bantown getting an eternal newspost declaring their victory, they'll just get permanent accounts.

    --
    Laws do not persuade just because they threaten. --Seneca
  3. possible other prizes by digitaldc · · Score: 4, Funny

    LiveJournal is offering a free permanent account and possibly other prizes

    Rumours are the other prizes include books on forming lasting interpersonal relationships, 7-day trips to Club Med, and the book 'Romance for Dummies.'

    --
    He who knows best knows how little he knows. - Thomas Jefferson
  4. OOOh! A shiny thing! by Gothmolly · · Score: 4, Funny

    A free LiveJournal account? Boy, my friends on MySpace will be so jealous!

    --
    I want to delete my account but Slashdot doesn't allow it.
  5. Re:Other possible prizes: by Rob+T+Firefly · · Score: 5, Insightful

    Shooting you in the head is illegal no matter what, but hacking away at a computer is only illegal if you don't have permission to do so. Otherwise, everyone who ever mplemented and tested their own security, everyone who took potshots at their own firewall, and every professional computer security tech who ever did his or her job at all, would be a criminal.

    --
    Slashdot Burying Stories About Slashdot Media Owned
  6. hacker demographic? by revery · · Score: 4, Funny

    Teenage, earth-loving, wiccan hackers unite!

    the above comment is an unfair stereotype and should be viewed with extreme suspicion

  7. Excellent idea by tdvaughan · · Score: 4, Funny

    Prize for proving that a product is insecure and poorly designed: the product itself!