umm... what? The problem is that the server has been changed
so that it provides a page that includes links to malware (sometimes
in auto-fire javascript). And a dynamic page, by definition, can't
be checked against a fixed checksum. Other than sandboxing the
browser, and black-listing code fragments (always a step behind),
there have been no good measures to take against this sort of
attack. And user education (did you mean to install something?) is
always going to be tragically flawed by some users.
--
Karl Kuehn
[email protected]
Dynamic content, sure. Nevertheless, server pages should still
produce deterministic results, and some parts of the stream are less
dynamic than others. Key parts of an http stream can be verified:
checked for specific signatures to see if it matches what is
expected. The check mechanism can be provided by a separate
monitoring device taking samples here and there.
Is it worthwhile? Can't say.
-Mike
_______________________________________________
MacOSX-talk mailing list
[email protected]
http://www.omnigroup.com/mailman/listinfo/macosx-talk
