Re: [Full-disclosure] Referers Are Evil
From: Tim (tim-security_at_sentinelchicken.org)
Date: 08/07/05
- Previous message: Steve Friedl: "Re: [Full-disclosure] Referers Are Evil"
- In reply to: Steve Friedl: "Re: [Full-disclosure] Referers Are Evil"
- Next in thread: Brian Dessent: "Re: [Full-disclosure] Referers Are Evil"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 7 Aug 2005 17:42:35 -0400 To: full-disclosure@lists.grok.org.uk
> What if regular users are behind rotating proxies (e.g., AOL)? :-)
...or on the same network with NAT.
...or on the same network segment with no NAT... steal cookie, the
proceed to steal the victim's IP with ARP poisoning...
tim
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Previous message: Steve Friedl: "Re: [Full-disclosure] Referers Are Evil"
- In reply to: Steve Friedl: "Re: [Full-disclosure] Referers Are Evil"
- Next in thread: Brian Dessent: "Re: [Full-disclosure] Referers Are Evil"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
