U2U | Member List | Search | Photo Archive | Chat | Links | Shop
Not logged in [Login - Register]
LocostBuilders » Forum » Computer/other site Problems » window_injection_vulnerability threat Power Tools at MachineMart.co.uk   go to bottom
Printable Version | Subscribe | Add to Favourites
 New Topic New Poll New Reply
Author: Subject: window_injection_vulnerability threat
mangogrooveworkshop
Contributor






Posts 8643
Registered 3/12/03
Location Planet Mango
Member Is Offline

Photo Archive Go!
Building: a fun new life full of adventures
posted on 15/12/04 at 03:41 PM Reply With Quote
window_injection_vulnerability threat

New scary threat to browsers


PRIVOXY PLUS SQUID SEEMS TO PROTECT AGAINST IT

[Edited on 15-12-04 by mangogrooveworkshop]





View User's Profile View All Posts By User U2U Member
Staple balls
Argh! Badgers!






Posts 2040
Registered 8/9/03
Location West wales, near aber.
Member Is Offline

Photo Archive Go!
Building: Up to a disaster
posted on 15/12/04 at 04:13 PM Reply With Quote
IIRC the easiest "fix" for this security hole is just not to have any other websites open when visting sites like internet banks or suchlike.

basically, don't have any other tabs or browser windows open when using sites that use popups (like the hsbc bank login)





View User's Profile Visit User's Homepage View All Posts By User U2U Member
Hellfire
BEC all the wayhay!......






Posts 12782
Registered 21/10/03
Location South Yorkshire, UK
Member Is Offline

Photo Archive Go!
Building: a reputation as a BEC devotee. Built: ZX12R Indy
posted on 15/12/04 at 04:38 PM Reply With Quote
As with SB - I never have any other window open (knowingly) when doing any secure transactions. Using Firefox reduces the likelyhood of this due to it's very nature of non-conformity and blocking pop-ups.





View User's Profile Visit User's Homepage View All Posts By User U2U Member
Staple balls
Argh! Badgers!






Posts 2040
Registered 8/9/03
Location West wales, near aber.
Member Is Offline

Photo Archive Go!
Building: Up to a disaster
posted on 15/12/04 at 04:58 PM Reply With Quote
Yep, good practice and being sensible is a good place to start, firefox helps in a lot of cases too.


Though i'd like to clarify something as far as Firefox goes too.

Firefox is a funny one really. It's almost certainly less secure than IE in a lot of ways, but firefox used a lot less, therefore exploited a lot less than IE, so far at least.

Remember, you're not safe because you're using Firefox, but you're in less danger. it's like wearing a seatbelt or not.





View User's Profile Visit User's Homepage View All Posts By User U2U Member
britishtrident
Contributor






Posts 17025
Registered 6/3/04
Location Blantyre
Member Is Offline

Photo Archive Go!
Building:

posted on 15/12/04 at 09:27 PM Reply With Quote
The main problem with IE is everything was left open by default and Microsoft (some think for its own purposes) left enormous holes in security.

Netscape/Mozilla and IE came from the same Mosaic roots for a long time Netscape was better than IE but around 1997 a major version change meant Netscape became pretty nasty and unuseable. Firefox and Thunderbird had to undo a lot of the damage before they could carry the Mozilla monster back into the lead.

In the past some of the Firefox and Thunderbird version released have been a litle too raw and some known problems that would be very easy to fix haven't been dealt with.

[Edited on 15/12/04 by britishtrident]

[Edited on 15/12/04 by britishtrident]
View User's Profile View All Posts By User U2U Member

New Topic New Poll New Reply


 LocostBuilders » Forum » Computer/other site Problems » window_injection_vulnerability threat go to top






Website design and SEO by Studio Montage

All content © 2001-16 LocostBuilders. Reproduction prohibited
Opinions expressed in public posts are those of the author and do not necessarily represent
the views of other users or any member of the LocostBuilders team.
Running XMB 1.8 Partagium [© 2002 XMB Group] on Apache under CentOS Linux
Founded, built and operated by ChrisW.