科技回声

4 条评论

albertsun大约 16 年前

While I don't doubt that TIME's poll security team (if it existed) was more than overmatched, how could a website defend the integrity of their online poll against such an attack?<p>Or is running an effective online poll truly hopeless?

评论 #582861 未加载

评论 #583114 未加载

评论 #582981 未加载

评论 #584239 未加载

评论 #582858 未加载

huhtenberg大约 16 年前

Hmm .. something's not right.<p>Why didn't Time blacklist the "devoters" by their IPs (or respective small subnets) ? They couldn't be <i>that</i> incompetent. So it's reasonable to assume that the blacklisting wasn't working, which means the hack must've been mounted in a distributed fashion, which in turn implies it was ran over a botnet of some kind. Hmm ..

评论 #582920 未加载

评论 #583278 未加载

评论 #582992 未加载

peregrine大约 16 年前

A simple forced login with email verification would have ended all of this nonsense. Throw recaptcha for good measure.

评论 #583238 未加载

评论 #583332 未加载

评论 #583077 未加载

timothychung大约 16 年前

I feel that it is more a crack than a hack. :-)

评论 #583313 未加载

评论 #582909 未加载

评论 #582912 未加载

How 4chan hacked ReCAPTCHA to win the TIME 100 Poll

4 条评论

How 4chan hacked ReCAPTCHA to win the TIME 100 Poll

4 条评论