[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Invoices, Misc.



Hi!

The invoices for all the donators (for Computax) were posted
yesterday, but I missed at least one (Arie Gutman?) and lost the
addresses of two others (Tuvik and Erez). So if you are among the
names mentioned here, or don't get any invoice by next week,
please contact me. Sorry for the delay, I finished all the
invoices, and got new ones only this week. But I put the real
date (i.e. June 10).

If you feel uncomfortable that a little of your money goes to
taxes, then:

1. I didn't have any other option. I tried to find, but there was
   no legal way to do it.
2. Take into account that my costs (for the booth, which were at
   least twice the donations+sponsorships+CDs+etc.) are recognized
   by Mass-Hachnassa and VAT too.


By the way: slashdot is down to report about that, but a new hole
of Microsoft ASP causes thousands sites around the world to be
vulnerable to intruders. For example, in order to view the source
of the ASP, just add "::$DATA" to the URL. It will work with any
ASP. If it looks too simple to be real, try to cheat the surveys
of IOL after looking at their sources, such as:
	http://www.iol.co.il/poll/scripts/pollnew.asp::$DATA

(I even found sites where this hole could allow intruders to cause
serious damages (rather than just cheat surveys), but I don't think
this is the place to advertize them).

There is a simple patch: Use http://apache.org and http://php.net
to replace your combination of IIS+ASP by the superior Apache+PHP.

-- 
Eli Marmor