FireFox + Linux == Best FireWall! |
Firefox nor Linux are a Firewall, and none of these would remove this vuln |
Edit: Doesn't matter, I miss read the post, I've seen too much stuff like this recently |
LMZ > there is a better firewall when you live in China ;-) |
Dial up connexions are good as firewall too... |
Well... The best "firewall" in this case would be NoScript. https://addons.mozilla.org/en-US/firefox/addon/722 |
<<Dial up connexions are good as firewall too>> :D!!!! |
So, ditch my firewall, move to China, get dial-up, install "no-script", then I'll be safe? =P |
CSRF (Cross-site Request Forgery) vulnerability in Gmail is fixed now: http://news.netcraft.com/archives/2007/09/30/google_fixes_gmail_crosssite_request_forgery_vulnerability.html |
New information: Google AdSense suffers about the same CSRF vulnerability too. Link to The Spanner post is http://www.thespanner.co.uk/2007/09/27/google-adsense-csrf-hole/
Credits goes to person writing comment to this SecuriTeam post: http://blogs.securiteam.com/index.php/archives/1003 |
<<So, ditch my firewall, move to China, get dial-up, install "no-script", then I'll be safe? =P>>
Sounds like a plan! Can I come? Pweeeeeease? |
It appears that the post doesn't include information is this vulnerability fixed by Google yet? |
Yesterday evening, I checked and it still wasn't fixed... |
Okay, Thanks for sharing this information. Let's hope they will fix it ASAP |
And it's still not fixed. |