Quote:
Originally Posted by Dephormation
Its a doddle to capture User Identifiers. SSL, non standard ports, non Phorm ISPs, cookie rewriting... all will cause User Identifiers to leak.
|
They must be planning to hash it somehow, otherwise we could harvest UIDs and really phuzz the database. Doing this could be classed as a computer misuse offense but Phorm obviously would not have cared about that when they gained unauthorised access to data held on the server doing the UID harvesting.