Talk:Samy (computer worm)

From Wikipedia, the free encyclopedia
Jump to: navigation, search
WikiProject Computing / Security (Rated Start-class, Low-importance)
WikiProject icon This article is within the scope of WikiProject Computing, a collaborative effort to improve the coverage of computers, computing, and information technology on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks.
Start-Class article Start  This article has been rated as Start-Class on the project's quality scale.
 Low  This article has been rated as Low-importance on the project's importance scale.
Taskforce icon
This article is supported by WikiProject Computer Security.
 

Not the first[edit]

There's the hotmail one http://seclists.org/bugtraq/2002/Oct/119 and the Advogato one: http://bindshell.net/papers/xssv/advogato.html All this would have been preventable if back then they had implemented something like CSP or this: http://lists.w3.org/Archives/Public/www-html/2002May/0021.html 211.24.123.50 (talk) 08:16, 27 July 2012 (UTC)

First wild implementations of academic research?[edit]

This edit claimed that Samy was one of the first wild implementations of academic research, citing [1]. I find this claim somewhat dubious. The citation doesn't provide any evidence suggesting that that "research" had anything to do with an academic institution. Also, the implication of those additions, imho, is that Samy's author consulted that "research", which is, again, not a conclusion that can be drawn from the above. TerraFrost 16:43, 7 March 2007 (UTC)

Samy himself admits that he consulted nothing more than a few javascript tutorials when developing this attack. He's given presentations on it at OWASP and other web security venues. My apologies for this being purely anecdotal evidence.

Virus/Worm terminology?[edit]

I'm really wondering about the terminology that should be use in such context. We've seen all over the web the usage of "worm" for describing such web attack but here, the author is using the term "virus". Any thoughts? —Preceding unsigned comment added by NEUrOO (talkcontribs) 13:58, 13 May 2008 (UTC) I don't think it's a worm or virus, either. In the end, the whole "Samy" thing wasn't really malicious, and really didn't cause anybody any harm. chad. (talk) 13:56, 25 July 2008 (UTC)

Using Wikipedia terminology it matches a virus. The Computer Virus page states 'A worm can spread itself to other computers without needing to be transferred ' but Samy needed user interaction to load the page into the browser. It is a virus. —Preceding unsigned comment added by 121.240.29.2 (talk) 02:48, 6 August 2008 (UTC)
Neither terms apply, as the script only changed data within a single software system - MySpace. Both virus and worms are transmitted between software systems. There is no applicable term to describe this attack.

Cat[edit]

Is there a way to categorize this article with other articles relating to lawsuits (criminal and civil being separate) for computer usage? Given that every usage of computers is pretty much now criminalized, I would expect this will be a hot and growing topic for the next decade. —Preceding unsigned comment added by 76.124.110.180 (talk) 14:07, 2 August 2010 (UTC)

Source Code[edit]

I just made the following edits:

In the source code section, I replaced all of the special characters (" < ") with HTML entities (" &#60; "). Wikimarkup thought that there were embedded URLs (this is a bug; adding links inside <code> tags is stupid).

I then collapsed the source code section, fixed the link at the end (it was duplicated in the ref list) and removed the stub tag (it's about the right size now considering how notable it is). --Guy Macon (talk) 16:07, 29 December 2011 (UTC)

I am unsure of the point of the source code. Also, wouldn't it be copyright by Samy? Did Samy say OK to put it here?**** you, you ******* ****. (talk) 09:11, 4 May 2012 (UTC)