[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Browser hijacking [Was] Xandros
On Sun, 2004-03-28 at 13:39, Jonathan wrote:
>My friend Dave (not a Linux guy) told me about this browser hijacking
>problem. Can this happen with Mozilla (or any other browser) in Linux?
Yes and no. There is a character (IIRC it's "%1") that can be used to pass
parameters to a second web site. It's a well-defined HTTP function, like
using the ? character as a way to pass other named parameters to a web
application (e.g., catalog lookup keys).
The problem with IE is that it doesn't display anything to the right of
that character. Mozilla displays it correctly. Displayed or not, though,
if you're not paying attention you will find yourself at that redirected
web site. The function is needed, but it can also be abused and taken
advantage of.
--Doc
-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.