funsec mailing list archives
Re: Interesting: Stealing your browser history... withoutJavaScript!
From: silky <michaelslists () gmail com>
Date: Sun, 14 Jun 2009 09:55:48 +1000
On 6/14/09, Thomas Raef <traef () ebasedsecurity com> wrote:
I seem to recall that HD Moore (I believe that's his name) showed this at Blackhat 2006 in Las Vegas, but his did use javascript.
Yeah, it's pretty old. a:visited. *shrug* Could be a ff-plugin (maybe addition to NoScript) to ban certain types of CSS selectors and attributes.
Thomas J. Raef We Watch Your Website "We Watch Your Website - so you don't have to!"
-- noon silky http://lets.coozi.com.au/ "A quote that makes me seem smart, humble, and rationalises my actions." _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Re: Interesting: Stealing your browser history... withoutJavaScript! Thomas Raef (Jun 13)
- Re: Interesting: Stealing your browser history... withoutJavaScript! silky (Jun 13)
- Re: Interesting: Stealing your browser history... withoutJavaScript! Paul Ferguson (Jun 13)
- Re: Interesting: Stealing your browser history... withoutJavaScript! Paul Ferguson (Jun 14)
- Re: Interesting: Stealing your browser history... withoutJavaScript! Paul Ferguson (Jun 13)
- Re: Interesting: Stealing your browser history... withoutJavaScript! silky (Jun 13)