[4602] in WWW Security List Archive
Re: Anonymizer / Web Spoof
daemon@ATHENA.MIT.EDU (Michael Tuschik)
Thu Feb 27 11:12:23 1997
Date: Wed, 26 Feb 1997 14:34:24 +0100
To: goat <babygoat@earthlink.net>, www-security@ns2.rutgers.edu
From: Michael Tuschik <mt2@inf.tu-dresden.de>
In-Reply-To: <330DA05E.5BA1@earthlink.net>
Errors-To: owner-www-security@ns2.rutgers.edu
At 08:17 21.02.97 -0500, goat wrote:
>I recently saw a post on this list or Sneakers that described an attack
>called a web spoof. There is a paper on it at security and hackerscene.
>I was wondering is what the anonymizer does a "Web Spoof" it sounds just
>like the attack described in the paper except for the fact that the user
>is aware of what is going on and the user starts it themself.
> goat
>
Not really. The goal of a Web Spoof is to hide itself from the user. An
anonymizer hides the user from the WWW server. So there are different
attacking goals but the techniques are the same.
-Micha
