michiexile: (Default)
michiexile ([personal profile] michiexile) wrote 2004-06-12 12:19 pm (UTC)

I've read through the code of the script - and the most it can do is read your cookie. This won't (probably) give away your password - but it may possibly be used for changing your password for you unless you make sure you bind to your own IP.

Spoofing with IP bound is harder - and involves spoofing your IP.
(4 comments)

Post a comment in response:

This account has disabled anonymous posting.
If you don't have an account you can create one now.
HTML doesn't work in the subject.
More info about formatting
 
Notice: This account is set to log the IP addresses of everyone who comments.
Links will be displayed as unclickable URLs to help prevent spam.