SQL Injection Attacks by Example A customer asked that we check out his intranet site, which was used by the company's employees and customers. This was part of a larger security review, and though we'd not actually used SQL injection to penetrate a network before, we were pretty familiar with the general concepts. We were completely successful in this engagement, and wanted to recount the steps taken as an illustration. "SQL Injection" is subset of the an unverified/unsanitized user input vulnerability ("buffer overflows" are a different subset), and the idea is to convince the application to run SQL code that was not intended. We'll note that this was a somewhat winding road with more than one wrong turn, and others with more experience will certainly have different -- and better -- approaches. There have been other papers on SQL injection, including some that are much more detailed, but this one shows the rationale of discovery as much as the process of exploitation. So we'll do it in steps. A standalone query of
Kramer about to barge into Jerry's apartment. The view from the hallway. : pics xp_cmdshell Executes a given command string as an operating-system command shell and returns any output as rows of text. Grants nonadministrative users permissions to execute xp_cmdshell. Note When executing xp_cmdshell with the Microsoft® Windows® 98 operating systems, the return code from xp_cmdshell will not be set to the process exit code of the invoked executable. The return code will always be 0. Syntax xp_cmdshell {'command_string'} [, no_output] Arguments 'command_string' Is the command string to execute at the operating-system command shell. command_string is varchar(8000) or nvarchar(4000), with no default. command_string cannot contain more than one set of double quotation marks. no_output Is an optional parameter executing the given command_string, and does not return any output to the client. Return Code Values 0 (success) or 1 (failure) Result Sets Executing this xp_cmdshell statement returns a directory listing of the current directory. xp_cmdshell 'dir *.exe' xp_cmdshell 'dir *.exe', NO_OUTPUT
Giles Milton: GOOD SHIP ZONG: THE MOST MACABRE INSURANCE CLAIM IN HISTORY It had been a grim sea voyage across the Atlantic. Dysentery, diarrhoea and small pox had already claimed the lives of seven crew members aboard the Zong. The slaves were suffering a far higher mortality rate. At least 62 had already died since leaving the shores of Africa. As Captain Luke Collingwood searched in vain for the coast of Jamaica, their destination, he grew increasingly alarmed. Every slave that died meant less profit for him. On 29 November, 1781, Captain Collingwood was struck by deeply macabre idea. His reasoning was callous in the extreme: if the slaves died of illness, their insurance value was lost. The Zong’s First Mate, James Kelsall, was appalled by the captain’s proposal. After much persuasion, Kelsell changed his mind and agreed with the captain and other officers. Two days later, on 1 December, Collingwood decided to throw out another ‘parcel’: this time, they were all men: a total of 42. Ultimately - and shockingly - the ship’s owners won the day.
SQL Injection Attacks by Example A customer asked that we check out his intranet site, which was used by the company's employees and customers. This was part of a larger security review, and though we'd not actually used SQL injection to penetrate a network before, we were pretty familiar with the general concepts. We were completely successful in this engagement, and wanted to recount the steps taken as an illustration. "SQL Injection" is subset of the an unverified/unsanitized user input vulnerability ("buffer overflows" are a different subset), and the idea is to convince the application to run SQL code that was not intended. We'll note that this was a somewhat winding road with more than one wrong turn, and others with more experience will certainly have different -- and better -- approaches. There have been other papers on SQL injection, including some that are much more detailed, but this one shows the rationale of discovery as much as the process of exploitation. So we'll do it in steps. A standalone query of
[ELI5] The implications, if any, for the rest of the US, of Puerto Rico voting to become a state. : explainlikeimfive Squel.js - SQL query string builder for Javascript Squel.js - lightweight Javascript library for building SQL query strings. - usable with node.js and in the browser. - well tested (~ 340 Mocha tests). Installation Node.js Once done you can use require to access the API: Bower Browser Include the following within your HTML body section, near the bottom: Once loaded the squel API will be available in the global object: NOTE: It is recommended that you do NOT create queries browser-side to run on the server as this massively increases your exposure to SQL Injection attacks. Overview Squel helps you quickly and easily build SQL query strings through an object oriented API. It requires less effort - instead of having to use brittle methods like string concatenation and substitution you get a nice clean API to do the hard work for you. Ok, now you're convinced! Squel uses method chaining to make things easy. Hint: You can run the example above by clicking it! You can simply write: Note: All of Squel's builders provide the toString() method. Fields Joins
Custom Scrollbars in WebKit Way back in the day, you could customize scrollbars in IE (5.5) with non-standard CSS properties like scrollbar-base-color which you would use on the element that scrolls (like the <body>) and do totally rad things. IE dropped that. These days, customizing scrollbars is back, but it's WebKit this time. It's a bit better now, because the properties are vendor-prefixed (e.g. The Goods The Different Pieces These are the pseudo elements themselves. The Different States These are the pseudo class selectors. :horizontal :vertical :decrement :increment :start :end :double-button :single-button :no-button :corner-present :window-inactive I'm going to steal this whole section from David's blog post on the WebKit blog because it explains each part well: :horizontal – The horizontal pseudo-class applies to any scrollbar pieces that have a horizontal orientation. All together now These pseudo elements and pseudo class selectors work together. Very Simple Example In The Wild View Demo Related Share this:
This cold-drip coffee machine looks like it belongs in a mad scientist's lab. Also it requires no electricity or filters. (scroll for pics) : Coffee I Went to a Female Masturbation Class The day before Hurricane Sandy hit New York City I had one main concern: I hope my vagina looks awesome. I was on my way to a female group masturbation workshop where I was going to be “playing the clitar” in front of strangers for approximately five hours. If the world was ending, at least I was leaving with a bang. The leader of the workshop is the legendary 83-year-old sex educator, Betty Dodson. Originally a fine artist, Betty changed careers in the '70s when she discovered feminism and the sexual revolution. She explained, “Orgasms have been very important to my life. On my way to Betty’s apartment, I tried to imagine what we could possibly do for five whole hours. When I arrived at the apartment, Carlin Ross, Betty’s smokin’ hot protégé, opened the door completely nude. When I entered the main room there were seven nude women lying on towels and cushions casually chatting. As I found my place on an empty cushion, Betty, also in the buff, joined us. Finally, it was our turn.
Considering the big hindrance bad eyesight would have been before the invention of corrective lenses, how did it remain so common in the gene pool? : askscience 4chans Gaming PC guide. : buildapc