Skip to main content

Thread: Man in the Browser

-

see: http://www.csoonline.com/article/717...goes-universal

understanding "man in browser" attack succeed attacker need compromise victim's browser. covertly installing plug-in...

...these browser attacks may main reason i'm building me new big hammer can switch online activity linux

in windows have run "winpatrol" -- detect , stop these requests update browser... ugly

in linux browser, e.g. firefox -- running in "userland" -- , cannot updated without permission install software -- , apply "plug-ins" -- -- in windows -- uac not object ... think because such updates updates browser -- , not system

please forgive me if chew on many of type of question...

all applications run userland. updates handled centrally operating system have option choose ones or don't update. won't stop mitb attack though - make easier if you're late on patching.

attacker exploits firefox controls firefox - in browser @ point in virtually every way (without getting technical). best bet prevent attacks on browser using apparmor. apparmor confines firefox process capabilities, prevent many exploits working. stop files being written without explicit permission - way prevent attacker doing type of mitb attack won't able write new extensions/plugins if you've set right. there guide apparmor @ top of forum, sticky.

there's no need worry asking many questions.


Forum The Ubuntu Forum Community Ubuntu Specialised Support Security [ubuntu] Man in the Browser


Ubuntu

Comments

Post a Comment

Popular posts from this blog

Thread: Firefox print dialog doesn't remember settings

-
hi, in ubuntu 12.04, firefox doesn't remember last used print settings in file - print (ctrl+p) dialog. need firefox remember exact settings used last time in print dialog. how this? in about :config, print.save_print_settings variable set true. still doesn't work. print file. have start on configuring print settings in print dialog, please help! i have same problem looks likes problem older firefox(gnome?) not respecting cups defaults doesnt seem there change it. if find solution please post here Forum The Ubuntu Forum Community Ubuntu Official Flavours Support General Help [ubuntu] Firefox print dialog doesn't remember settings Ubuntu
Read more

Error 400 - Photoshop services are not available

-
i keep getting error messge every time try log in. help? i take using pse 10 or earlier. photoshop.com dead , gone. should have received number of emails photos getting moved adobe revel, revel not direct replacement photoshop.com. can't use within pse. need stop using welcome screen, since try connect non-existent server:   http://barbarabrundage.com/2013/09/16/pse-8-9-10-cant-sign-in-error-404/ More discussions in Photoshop Elements adobe
Read more

After Effects error:creating resource file on Windows

-
hi   i have problem set of plugins developing. have 20 different plugins. after apply 10th plugin, gives following error on windows (cs6):   after effects error:creating resource file "....aex" ( 3 :: 0 )   i can have many instances of same plugin once have total of 10 different error comes up   one thing being enabled in plugin flag: pf_outflag_keep_resource_open   is culprit?   thanks in advance donj More discussions in After Effects SDK adobe
Read more