Hacker News new | past | comments | ask | show | jobs | submit login

This is actually a decent article but he spends far too long going on about HTTPs. Yes it is insecure but it isn't why they had a massive password compromise.

Ditto with XSS.




Quite right, and I did refer to that, the point was that if you can't get simple things like these right (among others referred to), is it any surprise that a major breach occurs?




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: