Open Tech Support
Open Tech Support Archives
Back to HomeCommunityReviewsGuidesDownloadsTech LinksMarketplaceContact Us
 »  SITE NAVIGATION
»  OTS Home
»  OTS Forums
»  OTS Archives

»  About our site
»  Search our site
»  Support our site

»  What is this site?
»  Who are we?
 
 
 »  ADVERTISMENT
 
  Pages: 1

GMail Messages are Vulnerable to Interception?

 (Click here to view the original thread with full colors/images)

Posted by: Ion Silverbolt

No official word on this yet but the site below sounds convincing enough. Worth a look if you use Gmail a lot.

http://dump.hbx.us/gmail_bug_hack/


Wondering if something had happened during the message transmission, we viewed the message source via GMail's "Show original" link. In the source, we did not see any of the HTML code that GMail was showing us. No HTML at all, as we did not even use it in our newsletter. It appeared as a regular run-of-the-mill plain text message.

We became curious as to what had gone wrong, and whether it was an error in the script, or in the GMail messaging system. We examined the the output of our Perl script, and discovered that it was not transmitting the "From" header (in the message body) correctly - the trailing ">" character was missing in the address area.

Where it should have been "From:<hbxnetworks@gmail.com>", we had "From:<hbxnetworks@gmail.com".

This, apparently, was enough to get GMail to provide us with some portion of someone else's messages.


Posted by: Boggy B

That's scary.
If i actually ever recieved anything important, i might actually care.


Posted by: xwxjncoxwx

i guess thats why Gmail is still in beta


 
Copyright 2000-2008 Open Tech Support. All Rights Reserved. Site Design and Development by Tolitz Rosel.