tag:blogger.com,1999:blog-31555433735564281252024-03-12T19:49:16.409-07:00Software Testing - Issues found via use of public facing websitesdev00790 comments on issues found using public facing websites, and suggestions / recommendations (where applicable) dev00790http://www.blogger.com/profile/12960215935159962504noreply@blogger.comBlogger7125tag:blogger.com,1999:blog-3155543373556428125.post-16913019907598297992020-04-08T15:14:00.002-07:002020-04-08T15:27:26.249-07:00UC - multiple pages - feedback request is missing link for page for users to provide feedback<span style="font-family: inherit;"><b>Date & time found: </b>08/04/20, 23:07 GMT</span><br />
<span style="font-family: inherit;"><b>OS</b>: Windows 10 x64</span><br />
<span style="font-family: inherit;"><b>Browser</b>: Google Chrome v81.0.4044.92 (Official Build) (64-bit)</span><br />
<b><span style="font-family: inherit;">Example webpages affected: </span></b><br />
<span style="font-family: inherit;"><br /></span>
<span style="font-family: inherit;">1) <a href="https://www.universal-credit.service.gov.uk/sign-in">https://www.universal-credit.service.gov.uk/sign-in</a></span><br />
<span style="font-family: inherit;">2) <a href="https://www.universal-credit.service.gov.uk/contact">https://www.universal-credit.service.gov.uk/contact</a></span><br />
<span style="font-family: inherit;">3) <a href="https://www.universal-credit.service.gov.uk/privacypolicy">https://www.universal-credit.service.gov.uk/privacypolicy</a></span><br />
<span style="font-family: inherit;">4) <a href="https://www.universal-credit.service.gov.uk/cookiepolicy">https://www.universal-credit.service.gov.uk/cookiepolicy</a></span><br />
<span style="font-family: inherit;">5) <a href="https://www.universal-credit.service.gov.uk/postcode-checker">https://www.universal-credit.service.gov.uk/postcode-checker</a></span><br />
<span style="font-family: inherit;"><br /></span>
<span style="font-family: inherit;"><b>Issue: </b>Unlike the Civil Service Jobs site (<a href="https://www.civilservicejobs.service.gov.uk/csr/index.cgi">https://www.civilservicejobs.service.gov.uk/csr/index.cgi</a>), the stated sites above do not appear have a link to a page for users to provide feedback.</span><br />
<span style="font-family: inherit;"><b>Impact</b>: Users on the stated UC pages can not easily see a way to provide feedback on their experience.</span><br />
<span style="font-family: inherit;"><br /></span>
<b><span style="font-family: inherit;">Screenshot for site 1):</span></b><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi9yMcbEe51u1rGM4Qa_VARWew-vuGjrj8qisu56yxCgazgtEHKkoFj0fAGN5qoJXp0G9KzEs5Fkrs0i8h_zyN7cXSJD3iWYmtUqNArBN9PkoB_f6sZhUvJTgoPkYT9YYRst6WqyYmfwhM/s1600/UC_SignInAccount_wo_FB_link_200408_2301.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="843" data-original-width="1580" height="170" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi9yMcbEe51u1rGM4Qa_VARWew-vuGjrj8qisu56yxCgazgtEHKkoFj0fAGN5qoJXp0G9KzEs5Fkrs0i8h_zyN7cXSJD3iWYmtUqNArBN9PkoB_f6sZhUvJTgoPkYT9YYRst6WqyYmfwhM/s320/UC_SignInAccount_wo_FB_link_200408_2301.PNG" width="320" /></a></div>
<br />dev00790http://www.blogger.com/profile/12960215935159962504noreply@blogger.com0tag:blogger.com,1999:blog-3155543373556428125.post-16162781030641892212020-04-07T14:22:00.002-07:002020-04-08T15:25:07.454-07:00Universal Credit Sign in page - Service Unavailable?!<span style="font-family: inherit;">Date: 07/04/20</span><br />
<span style="font-family: inherit;">Time: Around 22:10</span><br />
<span style="font-family: inherit;">Website: <a href="https://www.universal-credit.service.gov.uk/sign-in">https://www.universal-credit.service.gov.uk/sign-in</a></span><br />
<span style="font-family: inherit;">Operating System: Windows 10 x64 v1903</span><br />
<span style="font-family: inherit;">Browser: Google Chrome v80.0.3987.149 (Official Build) (64-bit)</span><br />
<span style="font-family: inherit;">Error message: "Sorry, the service is unavailable"</span><br />
<span style="font-family: inherit;">Screenshot of issue:</span><br />
<span style="font-family: "roboto" , "segoe ui" , "tahoma" , sans-serif; font-size: 13px;"><br /></span>
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiHfok0NxK9uVSMTV2tFWxqiylMswez2KuoePMjKv3FDlpCRMKkX_8tf80iJ-fQjWJXUlSUhLmzZhHjSnsH-6CB5pLQ35UhHOzYGTrlGSCsqELtX15sIOKC5VXLtdRqiZHi7Su5rS8PpPU/s1600/UC_ServiceNotAvailable_200407_2210.PNG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="573" data-original-width="1274" height="143" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiHfok0NxK9uVSMTV2tFWxqiylMswez2KuoePMjKv3FDlpCRMKkX_8tf80iJ-fQjWJXUlSUhLmzZhHjSnsH-6CB5pLQ35UhHOzYGTrlGSCsqELtX15sIOKC5VXLtdRqiZHi7Su5rS8PpPU/s320/UC_ServiceNotAvailable_200407_2210.PNG" width="320" /></a></div>
<span style="font-family: "roboto" , "segoe ui" , "tahoma" , sans-serif; font-size: 13px;"><br /></span>
dev00790http://www.blogger.com/profile/12960215935159962504noreply@blogger.com0tag:blogger.com,1999:blog-3155543373556428125.post-56418188878727788872020-03-29T02:01:00.000-07:002020-04-08T15:25:18.346-07:00Issues with online process for claiming Universal Credit (UC) onlineI have experienced a number of issues in the process of claiming Universal Credit (UC) online.<br />
<br />
I note that as of 29/03/20 the service is apparently in "Beta", so bugs are likely to be present.<br />
<br />
Some of these are detailed below, along with suggestions & potential improvements. This page is likely to be updated in the future.<br />
<b><span style="color: blue;"><br /></span></b>
<b><span style="color: blue;">1)</span></b><br />
<b>Who?</b> Digidentity<br />
<b>Date issues found? </b>29/03/20<br />
<br />
<b><u>Issues</u></b><br />
<b>i) </b><br />
<b>Website URL?</b><br />
<a href="https://play.google.com/store/apps/details?id=com.digidentity&hl=en_GB">https://play.google.com/store/apps/details?id=com.digidentity&hl=en_GB</a><br />
<b>Purpose of page?</b> Online verification of identity. Links to a version of App which is then not compatible with specific Android phones.<br />
<b>Name of App on Google play store? </b>Digidentity<br />
<b>Nature of issue?</b><br />
Android App "Digidentity" on Google play store is not compatible with specific Android phones according to Google, when signed into play store. Example phone: Vodafone VFD 510, Android version 7.1.1<br />
<br />
<b>Screenshot;</b><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgSuPbwa0urWRJY8IFsl-NGxlb_SqQ3XLEij_-JM9nqflhJYMxxnkasmDAmOXce4a3Bp2g8rFXkSuu8SJx0HG6u29kUBRRX1LYi_D0Wqo-WL5xKZKv1B27F58XgMEik9of9RQ9kuRumdiY/s1600/UC_Digidentity_GPlay_AppNotCompatibleWithPhone_200329.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="817" data-original-width="1600" height="163" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgSuPbwa0urWRJY8IFsl-NGxlb_SqQ3XLEij_-JM9nqflhJYMxxnkasmDAmOXce4a3Bp2g8rFXkSuu8SJx0HG6u29kUBRRX1LYi_D0Wqo-WL5xKZKv1B27F58XgMEik9of9RQ9kuRumdiY/s320/UC_Digidentity_GPlay_AppNotCompatibleWithPhone_200329.png" width="320" /></a></div>
<br />
<b>Impact of issue;</b><br />
Digidentity App not available for many users for verifying identity as part of UC claim, and potentially other processes, and users also affected.<br />
<br />
<b>ii)</b><br />
<b>Website URL?</b> my.digidentity.eu/purchases/2075242/step/3/identification_documents/uk/wizard/new?document_type=mobile_passport<br />
<b>Purpose of page?</b> Online verification of identity.<br />
<b>Date issues found? </b>29/03/20<br />
<b>Nature of issue?</b><br />
No visible option for user to go back to previous page of the verification process - eg a "Back" button, or other alternative.<br />
<br />
<b>Screenshot;</b><br />
<span style="color: red;"></span><br />
<div class="separator" style="clear: both; text-align: center;">
<span style="color: red;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEif5rTTm4IeSQZjApbf8mCme6giJGeAnuYcTP7HyzlwA7_5w5h9PcqxUlJLjAO7ia24clL3gcSFY20wAeRIfcJv6cjMI8JPqgJtHVLIah2-fgLICM-OVZzbp_UY8ZPcaezzIuiXof3ngno/s1600/UC_Digidentity_NoBackButton_200328.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" data-original-height="836" data-original-width="1600" height="167" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEif5rTTm4IeSQZjApbf8mCme6giJGeAnuYcTP7HyzlwA7_5w5h9PcqxUlJLjAO7ia24clL3gcSFY20wAeRIfcJv6cjMI8JPqgJtHVLIah2-fgLICM-OVZzbp_UY8ZPcaezzIuiXof3ngno/s320/UC_Digidentity_NoBackButton_200328.png" width="320" /></a></span></div>
<br />
<b>Impact of issue;</b><br />
Not user-friendly process. Combination of issue 1) i) and ii) can result in users being left frustrated and / or lose patience.<br />
<br />
---------------------------------------<br />
<br />
<b><span style="color: blue;">2)</span></b><br />
<b>Who?</b> Gov.uk Verify<br />
<b>Website URL? </b>Currently unavailable - cannot access page after a UC claim is submitted online.<br />
<b>Purpose of page?</b> Online verification of identity<br />
<b>Date of issue?</b> 28/03/20<br />
<b>Nature of issue?</b><br />
There is a link with wording similar to "<u>Cannot verify online</u>". There was no question on the linked page following this for the user to specify why they were not able to verify online.<br />
<br />
Do Gov. uk Verify have data for users going through this link & subsequent linked page for why they were not able to verify online?<br />
<span style="color: #cc0000;"><br /></span>
<b>Screenshot;</b><br />
Currently unavailable - cannot access page after a UC claim is submitted online.<br />
<span style="color: #cc0000;"><b><br /></b></span>
<b>Suggestion</b>:<br />
After the link is clicked, the process is changed; a question is asked to the user, similar to the below, with multiple choice option boxes allowing them to tick multiple answers that are relevant to them.<br />
<i>"Please select the reasons that you were not able to verify online;".</i><br />
Suggested answers;<br />
<i>"One or more technical issues with third party website"</i><br />
<i>"One or more technical issues with Gov.uk Verify website"</i><br />
<i>"Could not follow instructions" </i>(eg unclear what is being asked)<br />
<i>"Do not have a smartphone / tablet"</i><br />
<i>"My smartphone / tablet is not compatible with the third party app that is available"</i><br />
(other answers...)<br />
<i>"Other (please specify);" </i>[free text box]<br />
<br />
<b>Impact of issue;</b><br />
If Gov.uk Verify do not have the data for the breakdown of reasons & applicable volume of why number of people who are not able to verify online, then it is logical to assume that they may not know the number of users affected by this. This data could be useful for improvements to the Verify process.<br />
<br />
---------------------------------------<br />
<b><span style="color: blue;">3)</span></b><br />
<b>Who?</b> DWP / JCP (JobCentre Plus)<br />
<b>Website URL</b>? Currently unavailable - cannot access page after a UC claim is submitted online.<br />
<b>Purpose of page</b>? Allowing user to select accommodation type for part of process for claiming Universal Credit online.<br />
<b>Date of issue</b>? 28/03/20<br />
<b>Nature of issue?</b><br />
No visible option to specify "Short-let" as Accommodation type as part of UC claim process.<br />
No "other" accommodation option and corresponding free text box to allow user to advise DWP / JCP of correct information.<br />
<span style="color: red;"><br /></span>
<b>Screenshot; </b>Currently unavailable - cannot access page after a UC claim is submitted online.<br />
<br />
<b>Impact of issue;</b><br />
Incorrect information for accommodation type as part of UC claim, since user was not allowed to select a relevant option.<br />
<br />
<br />dev00790http://www.blogger.com/profile/12960215935159962504noreply@blogger.com0tag:blogger.com,1999:blog-3155543373556428125.post-11121491533219698602012-10-02T14:55:00.000-07:002012-10-02T14:55:31.399-07:00<div class="separator" style="clear: both; text-align: center;">
<iframe allowfullscreen='allowfullscreen' webkitallowfullscreen='webkitallowfullscreen' mozallowfullscreen='mozallowfullscreen' width='320' height='266' src='https://www.youtube.com/embed/tqM3D83GBRE?feature=player_embedded' frameborder='0'></iframe></div>
<br />
Want to stop badware? Follow this - Steve Irwin style :-).dev00790http://www.blogger.com/profile/12960215935159962504noreply@blogger.com0tag:blogger.com,1999:blog-3155543373556428125.post-87421671807441992022012-07-31T06:32:00.001-07:002012-07-31T06:34:44.213-07:00<h2 style="color: #3d85c6;">
No security updates for Safari on Windows and Snow Leopard</h2>
<a name='more'></a>Apple should really issue security updates for Safari for Windows & Snow Leopard users. Sophos has mentioned there are over 150 vulnerabilities that Apple has issued fixes for on other platforms.<br />
<br />
While Safari on Windows & Snow Leopard may not have as large a user base as other platforms, however there are still 1000's of users who will be using vulnerable versions of Safari on these, and they will be unaware since Apple hasn't informed them.<br />
<br />
Safari had 5.4% percent of desktop traffic in October 2011 according to <a href="http://arstechnica.com/information-technology/2011/11/the-end-of-an-era-internet-explorer-drops-below-50-percent-of-web-usage/" rel="nofollow">Ars Technica </a><br />
<br />
Total was 4.1% (Version 5 - 4.0% and Version 4 - 0.1%) of desktop traffic in June 2012 according to <a href="http://www.w3schools.com/browsers/browsers_stats.asp" rel="nofollow">w3schools</a> for users that went onto their website.<br />
<br />
I'm not recommending Safari on Windows & Snow Leopard to anyone for the foreseeable future - due to the gaping security holes. Those who currently have them installed should consider switching to other browsers which are more secure.<br />
<br />
<a href="http://nakedsecurity.sophos.com/2012/07/30/no-safari-security-updates/%20" rel="nofollow">http://nakedsecurity.sophos.com/2012/07/30/no-safari-security-updates/ </a>dev00790http://www.blogger.com/profile/12960215935159962504noreply@blogger.com0tag:blogger.com,1999:blog-3155543373556428125.post-63527926242322530272012-06-19T07:37:00.001-07:002012-06-19T07:37:56.138-07:00<h4>
</h4>
<h4>
Critical Updates - Microsoft "Patch Tuesday".</h4>
<h4>
Have you installed the latest patches available for your Computer?</h4>
<h4>
<a name='more'></a> </h4>
Microsoft has released it's latest patches earlier this week (typically second Tuesday each month).<br />
<br />
Many users & organisations have not applied the latest patches, and thus not protected against many of the vulnerabilities known, leaving the door open for Malware to actively exploit them.<br />
<br />
For example, the latest <a href="http://technet.microsoft.com/en-us/security/bulletin/ms12-037" rel="nofollow">Cumulative Security Update for Internet Explorer (2699988)</a> bulletin addresses "one publicly disclosed and twelve privately reported vulnerabilities in Internet Explorer".<br />
<br />
One of vulnerabilities, Sophos have commented on <a href="http://nakedsecurity.sophos.com/2012/06/19/ie-remote-code-execution-vulnerability-being-actively-exploited-in-the-wild/" rel="nofollow">here</a>, can be used reliably to gain remote code execution. This means that if someone was using an exploit for this type of vulnerability, and it your Computer or Server wasn't patched, that they would be able to run anything on it.<br />
<br />
If you have <b>Automatic Updates</b> switched off, advice is to switch it on, so these patches can be applied.dev00790http://www.blogger.com/profile/12960215935159962504noreply@blogger.com0tag:blogger.com,1999:blog-3155543373556428125.post-32391747607247755162012-06-18T12:50:00.001-07:002012-06-19T07:38:22.064-07:00<h4>
Many vulnerabilities & exploits for commonly used software are known
to Governments, but not necessarily in the public domain.</h4>
<a name='more'></a><br />
<br />
<a class="bbc_url" href="http://www.forbes.com/sites/andygreenberg/2012/03/21/meet-the-hackers-who-sell-spies-the-tools-to-crack-your-pc-and-get-paid-six-figure-fees/" rel="nofollow external" title="External link">http://www.forbes.com/sites/andygreenberg/2012/03/21/meet-the-hackers-who-sell-spies-the-tools-to-crack-your-pc-and-get-paid-six-figure-fees/</a><br />
<br />
<a class="bbc_url" href="http://www.vupen.com/english/research-vuln.php" rel="nofollow external" title="External link">http://www.vupen.com/english/research-vuln.php</a><br />
<br />
IMHO the more vulnerabilities we are able to find and develop patches for, a more secure world we will live in.dev00790http://www.blogger.com/profile/12960215935159962504noreply@blogger.com0