Re: [NTLK] Security issues with abbreviated URLs

From: <rhonda_at_write-on.org>
Date: Wed Mar 11 2009 - 14:34:57 EDT

On Wed, 11 Mar 2009 18:01:11 +0100, Frank Gruendel wrote:
> However, there is an inherent danger here. Harmful
> links can easily disguised that way. Plugins like
> Google or Safe Browser will consider these URLs
> harmless because they come from a domain (like e.
> g. tinyurl.com) that is considered safe.

Or, my chosen method, is to allow tinyurl.com to set a cookie so that
all tinyurl links get the preview. The link is on the tinyurl.com front
page.

I highly recommend using that method. That way whether the poster is
malicious or simply forgets to add preview, you know where you're going.

-Rhonda

====================================================================
The NewtonTalk Mailing List - http://www.newtontalk.net/
The Official Newton FAQ - http://www.splorp.com/newton/faq/
The Newton Glossary - http://www.splorp.com/newton/glossary/
WikiWikiNewt - http://tools.unna.org/wikiwikinewt/
====================================================================
Received on Wed Mar 11 14:35:05 2009

This archive was generated by hypermail 2.1.8 : Wed Mar 11 2009 - 15:30:00 EDT