 Link LoggerPremium,MVM
join:2001-03-29
Calgary, AB
kudos:3
 ·Shaw
| reply to SUMware
Re: IE Bug Leaks Private Details From 50 Million PDF Files hmmmm sounds like someone is new to security? Lets see hacking 101 includes using Google (or any other search engine for that matter) as one of the best recon sources available for things like potentially juicy file locations. Second meta data isn't IE's doing or problem.
Sound like Dan Goodin needs to take the advanced script kiddie course and then he might start looking to see what other metadata is in those files as this is more what the linked article talks about »securethoughts.com/2009/11/milli···k-paths/
Meta data isn't an IE issue as its dependent on what the creating/editing software includes, and Meta data is one of those things that enables people/software to do a pile of things, so removing it would/might/whatever reduce functionality, a trade that a lot of people might not be willing to make. Now if your uber concerned about meta data, then one needs to remember to strip it out before publishing any file.
As for me most of my files have a creation path of:
C:\Users\Blake\Documents (yep I'm using Windows 7)
or if I really want to secure it I create it in
C:\Users\Betty\Documents (that will fool them for sure)
In short this isn't much of a security issue, other then some meta data might expose more then you wanted, but it has nothing to do with IE and so once again Dan Goodin proves he doesn't get security or even how computers/software/data works and perhaps should seek a different career then writing about computer security.
Blake
Luke never underestimate the power/value of notepad.....
--
Vendor: Author of Link Logger which is a traffic analysis and firewall logging tool |
