New css attack

**anon** · 07-06-2010, 11:09 PM

Originally Posted by Slickerey

Here are my settings in case anybody wishes to try them out...
*image*

With "history" I mean just your browsing history.

Judging from the screenshot, you've disabled it. That probably deals with this leak, just like it does with the "classic" one.

**tesco** · 07-06-2010, 11:09 PM

Originally Posted by Tv Controls you

Originally Posted by tesco

I'm missing how this is mozilla specific.
It will have the same effect in every browser that supports css a:visited.

Yes, I know but Mozilla is the only one who will address this within the next year

IE will allow this to go on for ages, as they most likely don't care at all.

Ya I misread I thought you were saying that this affected only firefox.

I edited my post.

**Tv Controls you** · 07-06-2010, 11:09 PM

Originally Posted by Slickerey

Here are my settings in case anybody wishes to try them out...

Let us (FST) know if it works for you so we can spread the word.

Yes that is basically private browsing lol

Ya I misread I thought you were saying that this affected only firefox.
I edited my post.

It's fine, I just expect alot from firefox lol.

**Slickerey** · 07-06-2010, 11:10 PM

You absolutely have to love that extra security you're getting from disabling history. Hehe...

**anon** · 07-06-2010, 11:12 PM

Originally Posted by Slickerey

You absolutely have to love that extra security you're getting from disabling history.

Shame only Firefox users seem to be able to claim that

**Rart** · 07-06-2010, 11:41 PM

For a second there I thought about moving this thread to a more relevant forum.

Then I realized that this probably is the most relevant forum, as this is the forum where the people who visit are most likely to get their IP phished, and at the same time, most likely to care about getting their IP phished.

Isn't BT great.

**Tv Controls you** · 07-06-2010, 11:42 PM

Originally Posted by Rart

For a second there I thought about moving this thread to a more relevant forum.

Then I realized that this probably is the most relevant forum, as this is the forum where the people who visit are most likely to get their IP phished, and at the same time, most likely to care about getting their IP phished.

Isn't BT great.

Lol I was debating on putting it in Internet, Programming and Graphics...

**ca_aok** · 07-07-2010, 02:03 AM

So what precisely is this detecting? Your browse history rather than the presence of a:visited? Because the description implied it was catching a cascaded event during the click of a link, but the test page did correctly detect a link visited while NOT viewing the page itself so that seems unlikely.