[4565] in WWW Security List Archive
Re: Anonymizer / Web Spoof
daemon@ATHENA.MIT.EDU (Gretchin Lair)
Fri Feb 21 21:14:22 1997
Date: Fri, 21 Feb 1997 16:25:10 -0700 (MST)
From: Gretchin Lair <gretchin@uscolo.edu>
To: goat <babygoat@earthlink.net>
Cc: www-security@ns2.rutgers.edu
In-Reply-To: <330DA05E.5BA1@earthlink.net>
Errors-To: owner-www-security@ns2.rutgers.edu
On Fri, 21 Feb 1997, goat wrote:
> I recently saw a post on this list or Sneakers that described an attack
> called a web spoof. There is a paper on it at security and hackerscene.
> I was wondering is what the anonymizer does a "Web Spoof" it sounds just
> like the attack described in the paper except for the fact that the user
> is aware of what is going on and the user starts it themself.
> goat
>
anonymizer is a web spoof, albeit a voluntary one. the zippy filter
(http://www.metahtml.com/apps/zippy/) is also a voluntary web spoof, and
it's a very funny one. the good thing about web spoofs is that they show
up in referal logs like a sore thumb.
gl.
