Group Name Guessing Disclosure Policy

Max Kanat-Alexander mkanat at bugzilla.org
Mon Jul 19 22:04:25 UTC 2010


On 07/19/2010 02:48 PM, Mikhail Gusarov wrote:
> I don't see why URL hacking is different from API hacking from the
> security standpoint.

	Well, mostly because the URL isn't really an official API, and we don't
expect people to be URL hacking all that often. It's not different from
a *security* standpoint, but it is different from the standpoint of
things we actually expect people to do.

	-Max
-- 
http://www.everythingsolved.com/
Competent, Friendly Bugzilla and Perl Services. Everything Else, too.



More information about the developers mailing list