On Mon, Feb 04, 2002 at 04:45:33AM +0000, Jimmy Lim wrote:
> Rafael 'Dido' Sevilla writes:
>
> >
> >On Sat, Feb 02, 2002 at 12:59:52AM +0800, Rodrigo Escaler wrote:
> >>got this link from my email.
> >>
> >>http://www.microsoft.com&[EMAIL PROTECTED]/1338825GHU_98
> >>.asp
> >
> >This is NOT a microsoft site! It's a site that's hosted at
> >212.254.206.213. Apparently it's a Swiss IP according to ripe's whois
> >servers. It's a total hoax.
>
> you mean na hack na ang microsoft??? so anybody can do framing to another
> website ang site ng microsoft????
No. Look at the above URL a little more carefully:
www.microsoft.com&[EMAIL PROTECTED]
^
Note this @ sign!
The URL is really a URL to the site 212.254.206.113, not a URL to
www.microsoft.com. It's using a little-known quirk in the URL
syntax; see sect. 3.2.2 of RFC 2396 for details.
It's a frequent method of doing semantic attacks.
--
Rafael R. Sevilla <[EMAIL PROTECTED]> +63(2) 8177746 ext. 8311
Programmer, Inter.Net Philippines +63(917) 4458925
http://dido.ph.inter.net/ OpenPGP Key ID: 0x5CDA17D8
Heute die Welt und Morgen das Sonnensystem!
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
