On Mon, Feb 01, 2010 at 02:31:13AM +0000, Mark Hobley wrote:
> 
> 
> --- On Mon, 1/2/10, Mark Hobley <[email protected]> wrote:
> 
> > http://stcanning-your-computerc.com/scn1/?id=%3DnQ3xTzuNDMyLjE1MC4yNTImcGlkPTM2NHMxJnRpbWU9MTI2MjkyNg0OaA%3DM
> 
> Hmmm, that website keeps disappearing. Try this one:
> 
> http://foryoursecurityonline.com/

Doesn't work either.

> BTW, I am very worried about that string in the first website
> 
> %3DnQ3xTzuNDMyLjE1MC4yNTImcGlkPTM2NHMxJnRpbWU9MTI2MjkyNg0OaA%3DM
> 
> Is there any way that this can contain password information for another 
> website, or any information taken from another browser window that I have
> open?
> 
> I don't want the browser to be able to take information from one window and 
> provide it to another, or to be able to pass other information that the
> browser knows about, but is not relating to the webpage that has appeared.
> 
> I am not familiar with the browser code or the security model that it 
> deploys, and I could really do with a code security audit on this package.

If a website wants to send information to another one, or itself,
through urls, there really is nothing that the browser can do to prevent
that. It's not its role either.

Mike



-- 
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]

Reply via email to