My Situation:
I started (on openSUSE 13.2) tor via the terminal (normal firefox was already running).
I later noticed that the Terminalname was renamed to "Browser.bak (deleted)" where it should actually just be "Browser"
So i typed "Browser.bak (deleted)" in duckduckgo.com (not in tor but in my normal browser) and i got the
"NoScript filtered a potential cross-site scripting (XSS) attempt from [chrome:]..."
message.
So i checked the log and it said:
Code: Select all
[NoScript InjectionChecker] JavaScript Injection in ///?q=browser.bak (deleted)&t=opensuse
(function anonymous() {
q=browser.bak (deleted) /* COMMENT_TERMINATOR */
DUMMY_EXPR
})
[NoScript XSS] Sanitized suspicious request. Original URL [https://duckduckgo.com/?q=browser.bak+%28deleted%29&t=opensuse] requested from [chrome://browser/content/browser.xul]. Sanitized URL: [https://duckduckgo.com/?q=browser.bak+%20deleted%20&t=OPENsuse#602271173348...].
Code: Select all
Unknown RPC service: widget-csi-tick-I0... Does anyone have an idea about that "browser.bak (deleted)" and why i get the JavaScript Injection msg (and if its serious or not!)?
/E the injection message only apears when I use the search bar, not if I type the "browser.bak (deleted)" directly in the duckduckgo search bar