![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
bryantI'm not clicking on any links in LiveJournal entries until they fix the security hole. Recommend you don't either. Long story short, it's immensely easy to set up a page which, when you view it, will post something to your journal. That something can include a link to a page which, when you view it -- well, you get the idea.
I don't see any password theft vulnerabilities but I haven't really put too much effort into thinking about it, so I could be wrong.
I also have no idea how this gets fixed.
Sigh.
I don't see any password theft vulnerabilities but I haven't really put too much effort into thinking about it, so I could be wrong.
I also have no idea how this gets fixed.
Sigh.
no subject
Date: 2004-06-12 04:36 pm (UTC)Well, presumably, if it knew someone else's password, it could log you in as them, and make your computer post on their journal, or possibly delete it.