Skip to main content
nikos101
nikos101
Inspiring
March 9, 2009
Question

#CGI.REMOTE_ADDR# sql injection?

  • March 9, 2009
  • 21 replies
  • 6950 views
Could #CGI.REMOTE_ADDR# be spoofed to do sql injection?
This topic has been closed for replies.

21 replies

Show previous replies
N
Newsgroup_User
Inspiring
March 9, 2009
easily, but these days it is spoofed to run sql injection attacks only
by amatures - pros use 'bot armies' to run massive-scale sql injection
attacks, when spoofing anything is not needed since it is infected
machines of unsuspecting users that are executing the sql injection
attacks; the 'generals' stay in the shade and reap the rewards...

Azadi Saryev
Sabai-dee.com
http://www.sabai-dee.com/
BKBK
Community Expert
BKBKCommunity Expert
Community Expert
August 30, 2009

Something else just caught my eye. Azadi, your 237, 923 posts since Jan 1 1999 makes it 60 posts per day, every day of the year, for more than 10 years !

Something just doesn't add up. This might be something for the webmaster to look at.

-
-__cfSearching__-
Inspiring
August 30, 2009

BKBK wrote:

Something else just caught my eye. Azadi, your 237, 923 posts since Jan 1 1999

The old forums must have lumped all newgroup posts under the same user account. The mighty "Newsgroup_User" is quite the prolific poster ;-)

Terms & ConditionsAccessibility statement
Using the community Terms of use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices