Eiraborate

Welcome to 'My way, Elaborated!'

Anonymity

The lady we interviewed for our company and ITA collaboration project pointed an integrity breach that aroused my interest.

The following was her example of the SQL Injection:

SELECT password FROM users WHERE password = ‘   ‘  OR 1 = 1 /*

The OR operator makes the statement True and grants access to information.

It’s just amazing how one statement that doesn’t make any sense can make it all logically true.

Equally amazing is this result:

Hacking using SQL Injection

Hacking using SQL Injection

13M hits on the topic made we wonder without checking on the links how vulnerable your personal information can be. For a private person like me who values the challenge and mystery of anonymity more than the security derived from validation, it’s a huge deal.

One thing is for sure, I will be busy for the succeeding days.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Information

This entry was posted on January 16, 2013 by in Solitary Emission and tagged .
%d bloggers like this: