Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 

Current Page: 1 of 1
Results 1 - 4 of 4
4 years ago
bimn
Good questions. I don't know. The site that triggered this question is www.launchpad.net, but the question also interests me in the general case (is this a reliable defense to CSRF?). I assume that any XSS bugs discovered will get fixed, whereas the Referer checks are by design. I don't know if it has an open redirect; as many sites do, so that's plausible. Certainly an open redirect could
Forum: CSRF and Session Info
4 years ago
bimn
Thanks for your responses, everyone! PaPPy, sorry that my question wasn't clear. A quick clarification: I'm not asking whether a malicious user can send a request with a forged Referer: header; of course a malicious user can include anything in their headers that they want, as they control the client. That's not the question. In Question 1, I'm asking whether malicious site www.evil.com ca
Forum: CSRF and Session Info
4 years ago
bimn
By the way, I'm not talking about ways to block the Referer header (I know there are ways to prevent transmission of the Referer header, but if no Referer header is present, this site does not allow access to the site). I'm only curious about whether there are ways to transmit a false Referer header -- is this site secure? Is checking the Referer header secure enough, if you can assume either th
Forum: CSRF and Session Info
4 years ago
bimn
I wonder if I can tap the deep knowledge of this site. Consider a site that attempts to defend against CSRF by checking the Referer header. 1. If the site uses only SSL, are there any ways to bypass the Referer check? Can a Referer header be forged in a CSRF attack if all links are over HTTPS? (I know that a malicious client can send any headers it wants, but I'm talking about a CSRF attack
Forum: CSRF and Session Info
Current Page: 1 of 1