Hacker News new | past | comments | ask | show | jobs | submit login

Another "fun" thing to do is if the hosted data is just sitting there, wget a browser exploit file on top of it.

This is probably not a serious concern for a place as huge as twitter because they're going to CDN static content separately from dynamic content, but would be really exciting for "I got me one server for my whole startup" types. Maybe you could bypass existing systems to serve up malicious code to end users anyway.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact