I wrotte this in xoops site forums:
Do you know how to install a cockie via signature?.
I don'nt exactly how its makes, but it is posible:
Make sure that your browser configuration ask for install a cockies.
Now go to the account of "http://www.xoops.org/userinfo.php?uid=10424". You can see that ask to install cockie. If you see the html code, in the signature you can read:
<img src="http://www. casinoguru. net/images/yourhelp.jpg" alt="" />
This jpg file (is it really image jpg?) install cockie with format:
your_pc_user_name @ your_server_email_account.txt.
If you put this url in your browser, after try install cockie, return to page of parked domain.
i am alarmed by this, because, can any user via links (jpg is a permited extension) insert malicius
code?
Sorry, excuse because is a
http://www.bezos.cc/xoops/uploads/smilbezoops0008.gif paranoia.
The cookie is instaled by the server, and the image yet dont exist.
hi bezoops.
You'd better some good documentations about HTTP COOKIE.
Hi GIJOE:
I believe that is not a paranoia. I had responsed
in the same thread that:
Quote:
I have done more tests. With a computer with win ME and other one with Win XP SP2.
With the browsers Opera, Firefox, Netscape and IE.
Though the image does not exist, when one access to a page where it is this sigature,
it tries to install the cookie of casinoguru.
If it does not ask for it, it is possible that already it is yet installed.
In opera I can see it with its name, but in IE, this is the above mentioned name .
You can try with IE, with preferences->Internet option->Privacity->Advanced-> asking to install cookies,
deleting all the cookies in its directory, and returning to access to the page.
It asks one from xoops and the other one casinoguru.
It has been called me the attention, because when i am having acceded to some web sites,
sometimes continuous popup windows are opened in my browser to inviting me to game in a "casino".
But i have not answer.
I recognize that this it is not the appropriate Site for this question.
For that reason... excuse me... and bye
hi bezoops.
Though I don't read whole of your post, I know IE6 SP2 disallow access cookies via Client Side Script (like JavaScript) in the default setting.
If you want to access cookies of all browsers, you have to make some PHP files and use setcookie and $_COOKIE.