Spyware Mozilla IE

Costa · 20.07.2004., 12:35

Surfajuci primjetio sam da se pojavio i prvi spyware koji se instalira pomocu Mozille.
Na nekim stranicama koje sluze za download ilegalnih stvari prilikom downloada ukoliko koristite Mozillu pojavi vam se prozor za instalaciju "Free Access Plugin" ekstenzije. Samo stisnete Cancel i no harm done.

Ne bi ja bio ja kad ne bi to instalirao pa eto i zanimljive stvari. Instalira vam spyware zvan Bridge za IE

Obicna zla ekstenzija.

tor · 20.07.2004., 18:11

Citiraj:

Originally posted by Costa
Surfajuci primjetio sam da se pojavio i prvi spyware koji se instalira pomocu Mozille.
Na nekim stranicama koje sluze za download ilegalnih stvari prilikom downloada ukoliko koristite Mozillu pojavi vam se prozor za instalaciju "Free Access Plugin" ekstenzije. Samo stisnete Cancel i no harm done.

Ne bi ja bio ja kad ne bi to instalirao pa eto i zanimljive stvari. Instalira vam spyware zvan Bridge za IE

Obicna zla ekstenzija.

Ništa novoga za IE, a eto i na Mozilli...

Costa · 20.07.2004., 18:35

Moze se procitati na http://www.mozillazine.org/ o cemu je rijec. Naravno cim su vidjeli za ovo napravljene su male promjene. Od sljedece verzije ce se moci staviti white/black lista siteva s kojih zelite mogucnost instaliranja ekstenzija.

Bas skidam zadnju nightly build verziju koja ima tu mogucnost.

Puno vike nizasto

Over the past few months, it has become apparent that many authors of malware (a category of malicious software that includes viruses and spyware) have started targetting Mozilla users. While it is not believed that any attackers have managed to exploit the XPInstall mechanism to install software without the user's consent, several sites have tried tricks such as repeatedly asking to install an XPI package when a page loads, taking advantage of the fact that many users will accept the installation to make the dialogues go away.

Fortunately, users of recent Mozilla-based browsers now enjoy several new security safeguards designed to protect against these sorts of attacks. During the 1.7 release cycle, Daniel Veditz developed a patch that blocks XPI installs from being triggered by a page load, preventing software installation dialogues from appearing as soon as a user visits a site (bug 238684). Later in the same release cycle, a whitelist of sites that are allowed to ask the user for permission to install software was implemented (bug 240552). The default whitelist for Mozilla 1.7 features mozilla.org, mozdev.org and texturizer.net (home of Firefox Help and Thunderbird Help). Mozilla Firefox 0.9 just allows update.mozilla.org (though this has since being expanded to the whole of mozilla.org).

The most recent Firefox nightlies feature a new user-interface to manage the XPInstall whitelist. When a user tries to install software from a site that is not on the whitelist, a thin non-modal yellow bar appears at the top of the content area, informing the user that the install has been blocked (bug 241705). A button allows the user to add the site to the whitelist if they choose. Testers of the beta release of Windows XP Service Pack 2 will probably find the yellow bar familiar: it's almost a carbon copy of the new Internet Explorer Information Bar that appears when an ActiveX control is blocked. If you cannot wait for Firefox 1.0 to try this feature, grab a nightly build from the 0.9 branch but remember that there may be bugs.

Costa · 20.07.2004., 18:59

Evo kako to trenutno izgleda po defaultu u zadnjoj verziji:
http://www.zippyimages.com/82886.html

A ovo dobijete na siteu kojem je zabranjena instalacija ekstenzija:
http://www.zippyimages.com/82887.html

ßellerophon · 21.07.2004., 01:09

a kako se to dogodilo?

Costa · 21.07.2004., 09:36

Citiraj:

Originally posted by ßellerophon
a kako se to dogodilo?

Tako sto je bilo dozvoljeno instalirati ekstenzije s bilo kojeg sitea. Sad vise ne bude. Uostalom i prije si bio zasticen jer gumb cancel znaci cancel a ne kao kod IE-a kad sve ide automatski

djjokla · 21.07.2004., 10:11

Pa jednostavno namjestiš Mozillu da ti ne instalira nikakve programe

Costa · 21.07.2004., 10:27

Rjesenje je i stisnuti Cancel ali mnogi ljudi to ne gledaju pa bude svasta. Ovako je defaultno promjenjeno.

dr.fiksi · 21.07.2004., 10:35

Citiraj:

Originally posted by Costa
Rjesenje je i stisnuti Cancel ali mnogi ljudi to ne gledaju pa bude svasta. Ovako je defaultno promjenjeno.

Tako je, Costa.Nema softverskog rješenja koje zaštićuje od ljudske gluposti, a ljudska ne-glupost je najjači aparat zaštite.
Kako kažeš, svoju popularnost te stvari duguju nepromišljenosti i brzopletosti...

Costa · 21.07.2004., 10:46

Djelomicno je Mic kriv sa svojim brzopletim programerima koji su omogucili da se takve stvari i automatski instaliraju.

Al da ljude treba obrazovati, uvijek i u bilo kojem poslu

20.07.2004., 12:35	#1
Costa Moderator Datum registracije: Aug 2003 Lokacija: Zagreb Postovi: 3,193	Spyware Mozilla IE Surfajuci primjetio sam da se pojavio i prvi spyware koji se instalira pomocu Mozille. Na nekim stranicama koje sluze za download ilegalnih stvari prilikom downloada ukoliko koristite Mozillu pojavi vam se prozor za instalaciju "Free Access Plugin" ekstenzije. Samo stisnete Cancel i no harm done. Ne bi ja bio ja kad ne bi to instalirao pa eto i zanimljive stvari. Instalira vam spyware zvan Bridge za IE Obicna zla ekstenzija. __________________ Duke Nukem 3D online igranje TUTORIAL

20.07.2004., 18:35	#3
Costa Moderator Datum registracije: Aug 2003 Lokacija: Zagreb Postovi: 3,193	Moze se procitati na http://www.mozillazine.org/ o cemu je rijec. Naravno cim su vidjeli za ovo napravljene su male promjene. Od sljedece verzije ce se moci staviti white/black lista siteva s kojih zelite mogucnost instaliranja ekstenzija. Bas skidam zadnju nightly build verziju koja ima tu mogucnost. Puno vike nizasto Over the past few months, it has become apparent that many authors of malware (a category of malicious software that includes viruses and spyware) have started targetting Mozilla users. While it is not believed that any attackers have managed to exploit the XPInstall mechanism to install software without the user's consent, several sites have tried tricks such as repeatedly asking to install an XPI package when a page loads, taking advantage of the fact that many users will accept the installation to make the dialogues go away. Fortunately, users of recent Mozilla-based browsers now enjoy several new security safeguards designed to protect against these sorts of attacks. During the 1.7 release cycle, Daniel Veditz developed a patch that blocks XPI installs from being triggered by a page load, preventing software installation dialogues from appearing as soon as a user visits a site (bug 238684). Later in the same release cycle, a whitelist of sites that are allowed to ask the user for permission to install software was implemented (bug 240552). The default whitelist for Mozilla 1.7 features mozilla.org, mozdev.org and texturizer.net (home of Firefox Help and Thunderbird Help). Mozilla Firefox 0.9 just allows update.mozilla.org (though this has since being expanded to the whole of mozilla.org). The most recent Firefox nightlies feature a new user-interface to manage the XPInstall whitelist. When a user tries to install software from a site that is not on the whitelist, a thin non-modal yellow bar appears at the top of the content area, informing the user that the install has been blocked (bug 241705). A button allows the user to add the site to the whitelist if they choose. Testers of the beta release of Windows XP Service Pack 2 will probably find the yellow bar familiar: it's almost a carbon copy of the new Internet Explorer Information Bar that appears when an ActiveX control is blocked. If you cannot wait for Firefox 1.0 to try this feature, grab a nightly build from the 0.9 branch but remember that there may be bugs. __________________ Duke Nukem 3D online igranje TUTORIAL

20.07.2004., 18:59	#4
Costa Moderator Datum registracije: Aug 2003 Lokacija: Zagreb Postovi: 3,193	Evo kako to trenutno izgleda po defaultu u zadnjoj verziji: http://www.zippyimages.com/82886.html A ovo dobijete na siteu kojem je zabranjena instalacija ekstenzija: http://www.zippyimages.com/82887.html __________________ Duke Nukem 3D online igranje TUTORIAL

21.07.2004., 01:09	#5
ßellerophon Sannin Datum registracije: Jun 2003 Lokacija: Split Postovi: 1,568	a kako se to dogodilo? __________________ YES - BUT / your evaluation is superb - behold the underlying truth

21.07.2004., 10:11	#7
djjokla Premium Datum registracije: Jun 2004 Lokacija: Inside my head Postovi: 51	Pa jednostavno namjestiš Mozillu da ti ne instalira nikakve programe __________________ Epox EP-8RDA3+ rev 3.2 XP2500-M@2200Mhz (11x200@1.65V) - Da bi bar imao bolje napajanje Glacialtech Igloo 2520 2xCorsair CMX256a-3200cl (2-2-2-6) Leadtek Winfast A340TDH Seagate Barracuda 120GB/8MB Plextor PX-W5224TA (black) Pioneer DVD-RW DVR-MCC Samsung SyncMaster 757DFX Codegen Midi Tower 6066-CA-TW MS 450W PS

21.07.2004., 10:27	#8
Costa Moderator Datum registracije: Aug 2003 Lokacija: Zagreb Postovi: 3,193	Rjesenje je i stisnuti Cancel ali mnogi ljudi to ne gledaju pa bude svasta. Ovako je defaultno promjenjeno. __________________ Duke Nukem 3D online igranje TUTORIAL

21.07.2004., 10:46	#10
Costa Moderator Datum registracije: Aug 2003 Lokacija: Zagreb Postovi: 3,193	Djelomicno je Mic kriv sa svojim brzopletim programerima koji su omogucili da se takve stvari i automatski instaliraju. Al da ljude treba obrazovati, uvijek i u bilo kojem poslu __________________ Duke Nukem 3D online igranje TUTORIAL


PC Ekspert Forum Oglas	Oglasni prostor