Referrer: Difference between revisions
From /i/nsurgency W/i/ki
Jump to navigationJump to search
>Lambda No edit summary |
>Maxwell No edit summary |
||
| Line 1: | Line 1: | ||
When you click on a link in your browser, your browser will usually send the address where you found the link as a [[HTTP header|header]] in your new request. Referrers are sometimes used as a weak form of security. For example, some | When you click on a link in your browser, your browser will usually send the address where you found the link as a [[HTTP header|header]] in your new request. Referrers are sometimes used as a weak form of security. For example, some FormMail.pl pages require you to have a referrer which is from the domain where the script is hosted in order to send messages. Referrers are as easily spoofed as any other header. | ||
Leaving referrers on all the time can be bad. For example: | Leaving referrers on all the time can be bad. For example: | ||
Revision as of 15:08, 8 March 2009
When you click on a link in your browser, your browser will usually send the address where you found the link as a header in your new request. Referrers are sometimes used as a weak form of security. For example, some FormMail.pl pages require you to have a referrer which is from the domain where the script is hosted in order to send messages. Referrers are as easily spoofed as any other header.
Leaving referrers on all the time can be bad. For example:
This is why many links on the site go through http://anonym.to.
Referrer Spoofing
Uses
- Keep browsing history private
- Manipulate websites that use referrer information
Tools
Browser add-ons
Firefox
Link anonymizers
These prevent visitors from spewing your secret links all over the internets.
