Re^2: SprintPCS camera phone to Perlmonks Monkpics

I thought about this a bit initially and while I thought that there wasn't a hole because the URI has to be on http://pictures.sprintpcs.com/, it turns out that there is. Anyone else that is capable of creating a picture share on pictures.sprintpcs.com is capable of publishing to users using this script. Foo. I'm looking to see if there is a way to tie the fetched web site with the user.

Comment on Re^2: SprintPCS camera phone to Perlmonks Monkpics

Replies are listed 'Best First'.
Re^3: SprintPCS camera phone to Perlmonks Monkpics by mojotoad (Monsignor) on Jun 04, 2004 at 16:27 UTC
Hmmm, initially I thought that the photo was actually in the attachment, rather than the attachment being a URL pointing to the sprintpcs site. So it's not totally wide open like I thought, but as you said, can be manipulated if you can upload zaps to the sprint share site. At the very least, you could track who was doing what. :) Matt	[reply]
Re^4: SprintPCS camera phone to Perlmonks Monkpics by diotalevi (Canon) on Jun 09, 2004 at 17:34 UTC
The script is now updated so it attempts to verify that the picture was posted from the correct address and that the invitation was mailed to the correct address. This should close the loop so that other SprintPCS users are not able to post a picture share and then get other users to use it as if it were their own.	[reply]