Sorry for taking down Memestreams this afternoon. According to Rattle, my pen test sent the load to 80 on the box. There are some vulns in Memestreams. You should look for more and tell Tom (tom@memestreams.net) or Rattle (rattle@memestreams.net). Industrial Memetics should give out shirts to those who find new ones. So far we've found: -Some XSS/XSRF attacks -HTTP response splitting on a few pages -Some directory listings -Some default directories that shouldn't still be there -Some cryptographic issues |