[Full-disclosure] Stealing Browser History Without Using JavaScript
Peter Besenbruch
prb at lava.net
Thu Mar 1 19:06:48 GMT 2007
Matthew Flaschen wrote:
> "We all know there are still people out there who think turning off
> JavaScript protects them from everything."
It protects from an awful lot, and so far, from the worst stuff.
> Damn it... Good job. I guess NoScript isn't good enough anymore...
I couldn't get the demo to work over here, because of the Safe History
extension. For reference, I'll put out the links for Safe History, Safe
Cache, and Noscript:
https://addons.mozilla.org/firefox/1502/
https://addons.mozilla.org/firefox/1474/
https://addons.mozilla.org/firefox/722/
And I agree with you, RSnake did well.
--
Hawaiian Astronomical Society: http://www.hawastsoc.org
HAS Deepsky Atlas: http://www.hawastsoc.org/deepsky
Full-Disclosure is hosted and sponsored by Secunia.