Google News used to fake referer/phishing - Google Blogoscoped Forum

Forum

Google News used to fake referer/phishing
Corsin Camichel	Tuesday, May 2, 2006 2 years ago • 425 views
I just noticed something: You can use Google News (Germany confirmed, others likely to do the same) to fake/hide the referer. Proof: news.google.de/news/url?sa=T&a ... Now, in the Server log, as referer you have news.google.de. This can of course be used for pishing. I know, this is not the proper way to publish "security holes", but I lost my password for the BugTraq/SecurityFocus/Full-disclosure mailinglist :o)
This thread is locked as it's old... but you can create a new thread in the forum.

Advertisement

Blog | Forum more >> Archive | Feed | Google's blogs | About

Advertisement (advertise here?)

Find the right keywords for your campaigns at KeywordDiscovery.com

Google Apps Hacks (book)

Advertise here?

This site unofficially covers Google™ and more with some rights reserved. You can subscribe to the feed, email your tips and join our forum!