[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Browser hijacking [Was] Xandros

To: <silug-discuss@silug.org>
Subject: Re: Browser hijacking [Was] Xandros
From: <dsavage@peaknet.net>
Date: Sun, 28 Mar 2004 17:48:24 -0600 (CST)
Organization: Southern Illinois Linux Users Group
Reply-To: silug-discuss@silug.org
Sender: silug-discuss-owner@silug.org

On Sun, 2004-03-28 at 13:39, Jonathan wrote:
>My friend Dave (not a Linux guy) told me about this browser hijacking
>problem. Can this happen with Mozilla (or any other browser) in Linux?

Yes and no. There is a character (IIRC it's "%1") that can be used to pass
parameters to a second web site. It's a well-defined HTTP function, like
using the ? character as a way to pass other named parameters to a web
application (e.g., catalog lookup keys).

The problem with IE is that it doesn't display anything to the right of
that character. Mozilla displays it correctly. Displayed or not, though,
if you're not paying attention you will find yourself at that redirected
web site. The function is needed, but it can also be abused and taken
advantage of.

--Doc

-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.

Prev by Date: Re: Browser hijacking [Was] Xandros
Next by Date: Does Microsoft thwart Intel initiatives?
Prev by thread: Re: Does Microsoft thwart Intel initiatives?
Next by thread: Re: Browser hijacking [Was] Xandros
Index(es):
- Date
- Thread