USA Linux Users Group Forum Index
Log in Register FAQ Memberlist Search USA Linux Users Group Forum Index Album

Clickjacking: Hijacking clicks on the Internet

 
Post new topic   Reply to topic   printer-friendly view    USA Linux Users Group Forum Index » Web Browsers & Email Clients
View previous topic :: View next topic  
Author Message
JP
Linux Guru


Joined: 07 Jul 2024
Posts: 6670
Location: Central Montana
PostPosted: Sat May 23, 2024 12:50 am    Post subject: Clickjacking: Hijacking clicks on the Internet Reply with quote
cnet news wrote:
Clickjacking: Hijacking clicks on the Internet

This sounds like a Matrix movie, but the virtual equivalent of this is real and poses one of the most serious new risks on the Internet, according to Jeremiah Grossman, chief technology officer and co-founder of Whitehat Security.

"Most exploits (like worms and attacks that take advantage of holes in software) can be patched, but clickjacking is a design flaw in the way the Web is supposed to work," Grossman said. "The bad guy is superimposing an invisible button over something the user wants to click on...It can be any button on any Web page on any Web site."

The technique was used in a series of prank attacks launched on Twitter in February. In that case, users clicked on links next to tweets that said "Don't Click" and then clicked on a button that said "Don't Click" on a separate Web page. That second click distributed the original tweet to all of the Twitter user's followers, thus propagating itself rather quickly.


Clik Wink



_________________
Dell Box - Arch Linux
Dell Lappy - DreamLinux 3.5 - Default OS
Mepis 8.0 - Backup
Back to top
View user's profile Send private message Visit poster's website
JP
Linux Guru


Joined: 07 Jul 2024
Posts: 6670
Location: Central Montana
PostPosted: Sat May 23, 2024 5:07 pm    Post subject: Reply with quote
I guess I'd better re-enable no-script ..... I hate that thing, but if it protects like that .......

cnet news wrote:
People using Windows and IE should disable JavaScript to help protect against clickjacking, he said. Firefox is safer; the NoScript add-on for Firefox not only lets people selectively block scripts, but it has a ClearClick feature designed specifically to protect against clickjacking, he added.



_________________
Dell Box - Arch Linux
Dell Lappy - DreamLinux 3.5 - Default OS
Mepis 8.0 - Backup
Back to top
View user's profile Send private message Visit poster's website
mmmna
. . . .


Joined: 21 Apr 2024
Posts: 7224
PostPosted: Sun May 24, 2024 4:13 am    Post subject: Reply with quote
I need JS for certain sites. I'm so glad I have learned to dislike social networking sites. Haven't felt the urge to join Twitter, just deleted my MySpace, and almost ready to delete Facebook.



_________________
-Kubuntu 10.04 LTS Beta2 on Celeron D desktop
-PCLinuxOS 2024 LXDE on EeePC 900A with Atom n270 (modded with 32G SATA drive and 2G ram).
Back to top
View user's profile Send private message
tlmiller
Ultimate Member


Joined: 01 May 2024
Posts: 2432
Location: MD, USA
PostPosted: Sun May 24, 2024 11:01 am    Post subject: Reply with quote
I find that NoScript is a PITA to get set up, but once you do, as long as you don't reinstall your OS regularly, it becomes fairly simple to do with. I couldn't live without it anymore.



_________________
Debian Squeeze, Arch, Kubuntu mostly. Some Mandriva. Some Windows.
Desktops: shadowdragon, medusa
Laptops: bluedrake, banelord, sandwyrm, aardvark.
Back to top
View user's profile Send private message AIM Address MSN Messenger
JP
Linux Guru


Joined: 07 Jul 2024
Posts: 6670
Location: Central Montana
PostPosted: Sun May 24, 2024 5:18 pm    Post subject: Reply with quote
It's such an annoying app ..... I don't like it even tho I'm using it again ......



_________________
Dell Box - Arch Linux
Dell Lappy - DreamLinux 3.5 - Default OS
Mepis 8.0 - Backup
Back to top
View user's profile Send private message Visit poster's website
tlmiller
Ultimate Member


Joined: 01 May 2024
Posts: 2432
Location: MD, USA
PostPosted: Sun May 24, 2024 10:37 pm    Post subject: Reply with quote
I turn off notifications, and it never bothers me in the least.



_________________
Debian Squeeze, Arch, Kubuntu mostly. Some Mandriva. Some Windows.
Desktops: shadowdragon, medusa
Laptops: bluedrake, banelord, sandwyrm, aardvark.
Back to top
View user's profile Send private message AIM Address MSN Messenger
Cope57
Sr. Member


Joined: 25 Jan 2024
Posts: 1602
Location: 34.638673, -98.384704
PostPosted: Tue May 26, 2024 7:10 pm    Post subject: Reply with quote
Clickjacking on Twitter...

I do not have MySpace, Facebook, or Twitter. But I do post in forums, which I consider my online social interaction. If I want more Internet social interaction, I will use a instant messenger, or email.

I have actually met up with online personnel that live near me, but that is the extent of my online social activity.

If a Tweet is a post, then a Twit must be the postee. Very Happy



_________________
This block is for DISTRO information ONLY, all other information will be removed by the Site Administrators.
Debian GNU/Linux testing - Linux 2.6.32-4-amd64
Back to top
View user's profile Send private message Visit poster's website
JP
Linux Guru


Joined: 07 Jul 2024
Posts: 6670
Location: Central Montana
PostPosted: Wed May 27, 2024 4:40 am    Post subject: Reply with quote
Cope57 wrote:


If a Tweet is a post, then a Twit must be the postee. Very Happy

Laughing Laughing Laughing Laughing Laughing Laughing



_________________
Dell Box - Arch Linux
Dell Lappy - DreamLinux 3.5 - Default OS
Mepis 8.0 - Backup
Back to top
View user's profile Send private message Visit poster's website
inactive
Sr. Member


Joined: 29 Aug 2024
Posts: 1207
PostPosted: Sun May 31, 2024 10:20 pm    Post subject: Reply with quote
JP wrote:
Cope57 wrote:


If a Tweet is a post, then a Twit must be the postee. Very Happy

Laughing Laughing Laughing Laughing Laughing Laughing

This really cracked me up at awilliamson's blog.



_________________
Mandriva 2024.1 PWP
Mandriva Cooker
ArtistX live
Back to top
View user's profile Send private message
Lord.DragonFly.of.Dawn
Advanced Member


Joined: 18 Jul 2024
Posts: 607
Location: South Portland, Maine, USA, Earth, Sol System
PostPosted: Mon Jun 01, 2024 2:16 am    Post subject: Reply with quote
Cope57 wrote:
If a Tweet is a post, then a Twit must be the postee. Very Happy


nice.....



_________________
ArchLinux x86_64 - Custom Built Desktop
ArchLinux x86_64 - Compaq CQ50 Laptop
ArchLinux i686 - Acer Aspire One Netbook
ArchLinux i686 - Dell Presario ze2000 (w/ shattered LCD)

PuppyLinux, CloneZilla, PartedMagic, DBAN - rescue thumbdrives
Windows 7 (x86_64 desktop alternate boot)
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic   printer-friendly view    USA Linux Users Group Forum Index » Web Browsers & Email Clients All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All content © 2024-2009 - Usa Linux Users Group
This forum is powered by phpBB. © 2024-2009 phpBB Group
Theme created by phpBBStyles.com and modified by Crouse