Re: [Full-disclosure] Referers Are Evil

From: Tim (tim-security_at_sentinelchicken.org)
Date: 08/07/05

  • Next message: Brian Dessent: "Re: [Full-disclosure] Referers Are Evil"
    Date: Sun, 7 Aug 2005 17:42:35 -0400
    To: full-disclosure@lists.grok.org.uk
    
    

    > What if regular users are behind rotating proxies (e.g., AOL)? :-)

    ...or on the same network with NAT.

    ...or on the same network segment with no NAT... steal cookie, the
    proceed to steal the victim's IP with ARP poisoning...

    tim
    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.grok.org.uk/full-disclosure-charter.html
    Hosted and sponsored by Secunia - http://secunia.com/


  • Next message: Brian Dessent: "Re: [Full-disclosure] Referers Are Evil"