Forum » Informacijska varnost » Slo-techova ikona nevarna?
Slo-techova ikona nevarna?
frke ::
Vedno, ko obiščem stran www.slo-tech.com, mi "Proventia Desktop" izpiše HIGH RISK opozorilo:
[Unauthorized Access Attempt] This signature detects when you visit a Web site that provides a "favorites icon" that has a suspicious format. This includes an icon that contains a large number of images or an icon with one or more overlapping images. These icons can overflow a buffer in some older browsers allowing the server to take control of the client.
Poleg tega pa tudi:
[Suspicious Activity] This signature parses Windows Icon image files and triggers when any field deviates from specification.
Pri skoraj nobenih drugih straneh tega nisem opazil.
Kaj se dogaja pri vas?
[Unauthorized Access Attempt] This signature detects when you visit a Web site that provides a "favorites icon" that has a suspicious format. This includes an icon that contains a large number of images or an icon with one or more overlapping images. These icons can overflow a buffer in some older browsers allowing the server to take control of the client.
Poleg tega pa tudi:
[Suspicious Activity] This signature parses Windows Icon image files and triggers when any field deviates from specification.
Pri skoraj nobenih drugih straneh tega nisem opazil.
Kaj se dogaja pri vas?
- spremenil: frke ()
Avby ::
A sploh ima slo-tech favicon? Sam menim da ne?
Edit: V FF jo vidim v IE pa ne tak oda načeloma jo ima... težava pa je pomojena tvoji strani.
Edit: V FF jo vidim v IE pa ne tak oda načeloma jo ima... težava pa je pomojena tvoji strani.
Zgodovina sprememb…
- spremenil: Avby ()
t3hn0 ::
v ie ne prikaze ker nima definiranga favicona v headu...drugace pa opera in ff sta "pametna" in pogledata ce datoteka obstaja in jo avtomaticno prikaze. ne vidim pa razloga zakaj bi bila nevarna ikona^^
^.^
McMallar ::
Zakaj pa bi se virusi 2x inštailrali?
Why can't a programmer tell the difference between Halloween and Christmas?
Because OCT31 = DEC25
Because OCT31 = DEC25
V-i-p ::
Težka bo... če so virusi, so sigurno toliko pametni, da ne bodo šli inštalirat linukse
Kar lahko storiš danes, ne odlašaj na jutri. Raje reci, da si naredil že včeraj!
StratOS ::
Favicon
Zgleda, da je problem v tipu (type) ali pa nepravilen MIME identifier od serverja:
Primer
Ker gre za ico :
ICO files image/vnd.microsoft.icon (Alternatively, image/x-icon can be used instead, for compatibility reasons. However, it is preferable to use the IANA-registered MIME type, as most major browsers now support it.)
Torej ker gre za image/x-icon (vsaj tako IE prepozna ta tip, čeprav ni določena iz server strani) ne vem v čem bi bil problem, sama *.ico datoteka pa tudi upam brez "čudne kode".
Zgleda, da je problem v tipu (type) ali pa nepravilen MIME identifier od serverja:
Primer
<link rel="shortcut icon" href="http://example.com/favicon.ico" type="image/vnd.microsoft.icon"> <link rel="icon" href="http://example.com/favicon.ico" type="image/vnd.microsoft.icon">
GET /favicon.ico HTTP/1.1 Accept: */* Accept-Language: sl UA-CPU: x86 Accept-Encoding: gzip, deflate If-Modified-Since: Fri, 30 May 2003 15:42:24 GMT If-None-Match: [DELETED] User-Agent: [DELETED] Host: slo-tech.com Connection: Keep-Alive Cookie: [DELETED]
Ker gre za ico :
ICO files image/vnd.microsoft.icon (Alternatively, image/x-icon can be used instead, for compatibility reasons. However, it is preferable to use the IANA-registered MIME type, as most major browsers now support it.)
Torej ker gre za image/x-icon (vsaj tako IE prepozna ta tip, čeprav ni določena iz server strani) ne vem v čem bi bil problem, sama *.ico datoteka pa tudi upam brez "čudne kode".
"Multitasking - ability to f##k up several things at once."
"It works better if you plug it in."
"The one who is digging the hole for the other to fall in is allready in it."
"It works better if you plug it in."
"The one who is digging the hole for the other to fall in is allready in it."
Zgodovina sprememb…
- spremenila: StratOS ()
Vredno ogleda ...
Tema | Ogledi | Zadnje sporočilo | |
---|---|---|---|
Tema | Ogledi | Zadnje sporočilo | |
» | Apache - localhost JA, IP naslov NEOddelek: Omrežja in internet | 6605 (6464) | ManDriver |
» | "ikona" na brskalniku, levo od naslova.Oddelek: Izdelava spletišč | 1096 (1009) | jinzo |
» | Slikca pred naslovom spletne straniOddelek: Izdelava spletišč | 1477 (1201) | Tody |
» | Favorite iconOddelek: Izdelava spletišč | 1154 (1005) | darh |
» | Kaj pomeni favicon.ico ?Oddelek: Omrežja in internet | 1528 (1395) | pivmik |