2 questions:
1) Does ABE Anonymize strip the referer header?
2) Does ABE get control before HttpFox or after?
The reason I ask is that HttpFox is showing the referer on a request that I thought should be cleaned by Anonymize.
If ABE doesn't clean the referer header out, that would explain it.
If it does, but ABE gets control after HttpFox, it would explain why HttpFox is showing the referer. In that case, is there something else that can show the output after ABE gets involved?
Thanks!
Does ABE Anonymize strip referer
Does ABE Anonymize strip referer
Mozilla/5.0 (Windows NT 6.1; rv:17.0) Gecko/20100101 Firefox/17.0
Re: Does ABE Anonymize strip referer
I doubt it. It's not about privacy; it's about preventing CSRF attacks.skkukuk wrote:1) Does ABE Anonymize strip the referer header?
Actually, stripping the Referer header would make you more vulnerable to such attacks, because some sites check the header as a defence. It's not a good defence, but it can work in some cases, and I doubt ABE throws it away.
I'm not sure about that one. Giorgio would know.2) Does ABE get control before HttpFox or after?
======
Thrawn
------------
Religion is not the opium of the masses. Daily life is the opium of the masses.
True religion, which dares to acknowledge death and challenge the way we live, is an attempt to wake up.
Thrawn
------------
Religion is not the opium of the masses. Daily life is the opium of the masses.
True religion, which dares to acknowledge death and challenge the way we live, is an attempt to wake up.
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:24.0) Gecko/20100101 Firefox/24.0