On 03/31/2010 06:48 PM, Eddy Nigg:
On 03/31/2010 04:45 PM, Kai Engert:
====== snip quote begin ======
E.g., the attacker would send:
GET /pizza?toppings=pepperoni;address=attackersaddress HTTP/1.1
X-Ignore-This:
And the server uses the victim's account to send a pizza to the
attacker.
======= snip quote end =======
This attack is highly theoretical beyond believe, specially the
X-Ignore-This-and-That headers. Is has no real and practical value
whatsoever. Here some interesting observations and opinion by others:
http://blogs.technet.com/srd/archive/2010/02/09/details-on-the-new-tls-advisory.aspx
X-Abuse-Me:
X-Description: I will ignore any content in Abuse-Me header
X-More-Description: I accept headers also after the body part has been sent
X-Conclusion: I'm vulnerable to user input and on transit
--
Regards
Signer: Eddy Nigg, StartCom Ltd.
XMPP: start...@startcom.org
Blog: http://blog.startcom.org/
Twitter: http://twitter.com/eddy_nigg
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
