Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
begemot
on Oct 27, 2009
|
parent
|
context
|
favorite
| on:
URL Shorteners are evil, here's one to prove it.
Isn't it a bad idea to retrieve any url since then an attacker could use this service to sql inject without leaving his IP on the victims log?
JoachimSchipper
on Oct 27, 2009
|
next
[–]
Meh. There are plenty of open redirects out there anyway, and using one you made yourself has the disadvantage that you'll be visible in the Referrer logs.
brown9-2
on Oct 27, 2009
|
prev
[–]
I'd imagine most of these services just do GETs, which negates most of that possibility.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
