tmccann11
Who, Me?
Premium
join:2001-06-10
Bayonne, NJ
clubs:
1 edit | Got Me Good
Damn, I just might have fallen for that considering the fact that I get tons of mail from like best buy and staples.
F$%$%$ng Microsoft.
Tom
FP |
|
EGeezer
Go Bobcats
Premium
join:2002-08-04
Country!
 ·Callcentric
 ·RoadRunner Cable
·AT&T CallVantage
| IE vulnerability - Now more than ever ...
That's another good reason to be sure you type no sensitive information on any web page that does not have the secured lock and a valid security certificate.
Too many "legitimate" sites have the input fields on a page without the lock and cert, then redirect to https only after the user has entered sensitive data and pressed enter to send it. Too many more have certs that don't match the sites or are expired.
EG
--
"Well," Brahma said, "even after ten thousand explanations, a fool is no wiser, but an intelligent man requires only two thousand five hundred." -- The Mahabharata. |
|
XuhQshinR
join:2001-09-18
Bradenton, FL
| reply to tmccann11
Re: Got Me Good
Very tricky! One possible way to tell is to go to FILE: and PROPERTIES and it will tell you the real deal is: »www.symantec.com�@i.dslr.net/···dex.html
But of coarse we don't all do that at every site we browse too.
Always someone finding a way to show MS's weakness. It's not that difficult is it?
Thanks for the heads up! |
|
netwire
Premium
join:2001-04-27
Mooresboro, NC | reply to tmccann11
Thank God for Mozilla.... hehe |
|
Googled
Yay, I have FIOS
join:2001-08-13
Orchard Park, NY
·VoicePulse
| reply to tmccann11
Internet Explorer 6 | 
Firebird |
This topic drove me to venture into the security settings for IE6. I noticed that two items have been added since I last looked. They are settings for running .NET framework components. Both were set to "Enable", by default I assume. You all might want to check your settings. I changed mine to "Prompt" |
|
user3657
join:2000-04-27
Trenton, NJ | reply to tmccann11
this has been around for years...why is it just being noticed now? |
|
Zertoss
Just Say No To Caps Lock
join:2001-08-01
Clute, TX
| said by user3657  :
this has been around for years...why is it just being noticed now?
That's what I would like to know.
--
This lead apron will protect me from the gravity. |
|
AthlGrond
Premium,MVM
join:2002-04-25
Aurora, CO
·Comcast
| reply to Googled
Although .net is managed code (similar to java from a security standpoint, for the lack of a better analogy) I agree that you should want to be prompted to execute .net code on your computer.
If you regularly needed a .net program to run you would either want to change the site's security settings or turn off prompting. (but currently the internet isn't awash with .net content, so prompting makes the most sense.) |
|
titoisme
join:2003-07-13
Brooklyn, NY | reply to tmccann11
Reason #215 why I don't even look at IE |
|
Googled
Yay, I have FIOS
join:2001-08-13
Orchard Park, NY
·VoicePulse
| reply to Googled
Okay I figured out it was because I copied and pasted the link into IE. I tried it the way I was supposed to by clicking on the link and the address did change to http://www.symantec.com
I had seen this before, but I thought they used a bunch of javascript to do it.
What would happen if you changed the url to something like file://foobar.htm or perhaps http://localhost Would that make the page execute in a different zone?
I have just tested it and it doesn't appear to work on an http://localhost The address changes, but IE stays in the Internet zone.
I couldn't get it to work on file:// either, but I couldn't quite get file:// to work correctly, when I made my phished URL the browser kept looking for a server share on the network rather than trying to find the file on the C: drive. Could someone else try this and see if they can get it to work? |
|
rtcy
FACTS only please
Premium
join:1999-10-16
Beverly Hills, CA |  reply to tmccann11
always on mozilla, |
|
Jason Levine
Premium
join:2001-07-13
USA
| reply to EGeezer
Re: IE vulnerability - Now more than ever ...
said by EGeezer :
That's another good reason to be sure you type no sensitive information on any web page that does not have the secured lock and a valid security certificate.
This will work with an SSL secured site as well. See this post: »Don't trust the Lock icon either!
All the hacker would do is buy an SSL cert for his site (from Verisign, GeoTrust, etc) and then set up one of these links. The lock icon would show and the cert would appear to be valid in that no warnings would pop up. If you checked the cert, you'd see it is for a different site than the one that you appeared to be on, but how many people do this for every secure site they go to?
--
-Jason Levine
http://www.jasons-toolbox.com/
http://www.PCQandA.com/
http://www.urateit.com/ |
|
Transmaster
Don't Blame Me I Voted For Bill and Opus
join:2001-06-20
Cheyenne, WY
 ·Qwest.net
2 edits | reply to tmccann11
This Phish is hilarious
I just received this in one of My E-mail accounts. This has got to be one of the funniest things I have ever seen.
Talk about STUPID!!!!!. Who ever this is must not be able to type and chew gum at the same time. I do see what you mean by the site it looks real. The "real" address is
»citibridgetrack.com this address naturally does not work
Dear OnlineCitibank Cardholders,
This letter was ssent by the Citi-Bank server to veerify your e-mail
adress. You must cltoepme this prcoses by clicking on the link
below and enntering in the small window your Citbiank Debit
Card Nummber and card pin that you use on ATM Machine.
That is donne for your pctreotion -u- because some of our members no
lngoer have acsecs to their email adedsress and we must verify it.
To veerify your e-mail adderss and akcess your Citi-bank account, klick on
the link below. If ntohing hapepns when you clic on the link -6 copye
and paste the link into the address bar of your web broswer.
»www.citibank.com/?YjT2X9uB3W0TOE···CYnylY8t
---------------------------------------------
Thank you for using Citi-Bank!
---------------------------------------------
This automatic email sent to: w7itc@msn.com
Do not reply to this email.
--
I love Irish Terriers, Low Brass, and the sound of a 1950 Johnson Viking 1 tranmitter on the air for the first time in 30 years. |
|
Spiro0
join:2003-08-04
Austin, TX | reply to Zertoss
Re: Got Me Good
2 million lines of code is why... Sort of a Denial of Maintenance attack by the Microsoft developers on themselves. |
|
HackManiac
join:2003-12-18
Australia | Re: Denial of Maintenance attack
(Smile) I love it.
I would love to use an acronym like "DOM" Attack! in reference to MS during my Linux close.
Can I quote you in my seminars?
And maybe add it to my T-Shirt ad's.
Cheers
Andy |
|
Spiro0
join:2003-08-04
Austin, TX | Sure! If I just coined a phrase, maybe I should put my name on it...
Stephen D |
|
