<br><span class="gmail_quote"></span>i see only two possible ways for google to get this kind of data.<br><br>google toolbar<br>or it buys/gets this information from some isp/companies/anybody with a big enough pipe ..<br>
<div><div><br><br> </div><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><span class="e" id="q_10fe5f8309a08028_1"><div><span class="gmail_quote">
On 1/2/07, <b class="gmail_sendername">php0t</b> <<a href="mailto:php0t@zorro.hu" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">php0t@zorro.hu</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<br> How exactly does such data get captured? Somebody placed a link<br>somewhere with the url having the user/password in it ? What would be<br>the point of that? And if not, where did that come from? I peeked at<br><a href="http://www.google.com/tools/firefox/safebrowsing/faq.html" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://www.google.com/tools/firefox/safebrowsing/faq.html</a> to learn more<br>but it only has obvious info.<br><br><br><br>-----Original Message-----<br>From: <a href="mailto:full-disclosure-bounces@lists.grok.org.uk" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
full-disclosure-bounces@lists.grok.org.uk
</a><br>[mailto:<a href="mailto:full-disclosure-bounces@lists.grok.org.uk" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">full-disclosure-bounces@lists.grok.org.uk</a>] On Behalf Of JM<br>Sent: Tuesday, January 02, 2007 11:17 PM
<br>To: <a href="mailto:full-disclosure@lists.grok.org.uk" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
full-disclosure@lists.grok.org.uk</a><br>Subject: Re: [Full-disclosure]Google's blacklisted url database<br>(phishing url database)<br><br><br><br>I just played around a bit with those lists and as it seems, Google did
<br>a splendid job, even capturing some people's login data. Like here:<br><a href="http://sb.google.com/safebrowsing/update?version=goog-black-url:1:7753" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://sb.google.com/safebrowsing/update?version=goog-black-url:1:7753
</a><br><br>Regards,<br>J.M.<br>Professional Lurker<br><br>>[By] "Rajesh Sethumadhavan" <<a href="mailto:rajesh.sethumadhavan@yahoo.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
rajesh.sethumadhavan@yahoo.com</a>><br>>[Date] Dienstag, 2. Januar 2007 18:42
<br>>[To] <a href="mailto:full-disclosure@lists.grok.org.uk" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">full-disclosure@lists.grok.org.uk</a><br>>[Subject] [Full-disclosure] Google's blacklisted url database (phishing
<br>url<br>>database)<br>><br>
> It is possible to access google`s blacklisted url database ( phishing<br>> url database )<br>><br>> <a href="http://sb.google.com/safebrowsing/update?version=goog-black-url:1:1" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://sb.google.com/safebrowsing/update?version=goog-black-url:1:1
</a><br>> <a href="http://sb.google.com/safebrowsing/update?version=goog-black-url:1:7998" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://sb.google.com/safebrowsing/update?version=goog-black-url:1:7998
</a><br>><br>><a href="http://sb.google.com/safebrowsing/update?version=goog-white-domain:1:19" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://sb.google.com/safebrowsing/update?version=goog-white-domain:1:19</a><br>,goo<br>>g-white-url:1:371,goog-black-url:1:7693,goog-black-enchash:1:15282<br>><br>><br>> This database (Part of Google Safe Browsing) can be used in any
<br>> anti-phishing commercial softwares :)<br>><br>> Regards<br>> Rajesh Sethumadhavan<br>> <a href="http://www.xdisclose.com" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://www.xdisclose.com
</a><br><br>_______________________________________________
<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://lists.grok.org.uk/full-disclosure-charter.html
</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://secunia.com/</a><br><br><br><br><br>_______________________________________________<br>Full-Disclosure - We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://lists.grok.org.uk/full-disclosure-charter.html
</a><br>Hosted and sponsored by Secunia - <a href="http://secunia.com/" target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">http://secunia.com/</a><br></blockquote></div><br>
</span></div></blockquote></div><br>