MySpace Explains The Law To States' Attorneys... >>
<< Canadians Overpay On Copying Levy -- Money...
 tdicon 


(Mis)Uses of Technology

by Mike Masnick

Tue, May 15th 2007 7:53pm





Indian Visa Application Data Easily Accessible Using Old 'Change Number In URL' Trick

from the very-very-secure dept

The folks over at Daniweb have submitted their story about the online visa application system in India. Approximately a year ago, someone who was using the system ran into a problem, where all the work he had done in filling out the application seemed to disappear, and the back button wasn't work. So he tried making small changes to the URL... which gave him access to someone else's visa application. There are plenty of online systems that do this, but you would expect something a little more secure when it comes to government documents that include all sorts of personal info. The guy notified those responsible, and his alert was promptly ignored. It was only after they were contacted a second time, by the person writing the article about it, that they took it seriously enough to finally plug the hole. With governments leaking data all the time, is it any wonder that people don't feel particularly safe when the government wants even more data from us, while promising that there's no way it would ever be leaked?

4 Comments | Leave a Comment..


If you liked this post, you may also be interested in...
 

Reader Comments (rss)

(Flattened / Threaded)

  1.  
    identicon
    Anonymous Coward, May 15th, 2007 @ 9:02pm

    Why do they bother making promises like that? It just makes us laugh to hear it.

    reply to this | link to this | view in thread ]

  2.  

    Giving data to the government...

    identicon
    ConceptJunkie, May 15th, 2007 @ 9:11pm

    You should consider any data given to the government as secure as it would be on a billboard along I-95.

    OK, I'm exaggerating. Let's say a billboard facing away from the highway... but it's got lots of neon on it.

    reply to this | link to this | view in thread ]

  3.  
    identicon
    Anonymous Coward, May 16th, 2007 @ 6:05am

    Ahhhh....Would this system have been written by the highly skilled & talented people that we can't seem to find in this country and therefore need to outsource things to India?

    Looks like they have programmers making the mistakes that most of the developers here got past in 1996.

    reply to this | link to this | view in thread ]

  4.  

    Data leaks

    identicon
    Wolf0579, May 16th, 2007 @ 8:18am

    It's getting to be pretty bad these days. Corporations that keep credit card info way past the transaction completion, whose data banks get hacked. Governments who are terribly inefficient with design and implementation of computer systems, asking for and keeping increasing amounts of personal data.

    reply to this | link to this | view in thread ]


Add Your Comment

Have a Techdirt Account? Sign in now. Want one? Register here
Get Techdirt’s Daily Email
Save me a cookie
  • Note: A CRLF will be replaced by a break tag (<br>), all other allowable HTML will remain intact
  • Allowed HTML Tags: <b> <i> <a> <em> <br> <strong> <blockquote> <hr> <tt>


MySpace Explains The Law To States' Attorneys... >>
<< Canadians Overpay On Copying Levy -- Money...
 tdicon 

A word from our Sponsors...
Follow Techdirt
Flattr rss rss

Powered by Postrank

From the Techdirt Archive...
A word from our Sponsors...

Close

Email This