InformAction Forums

NoScripters and WebSec nerds of all lands, unite!
https://forums.informaction.com/

ABE it's a spyware? [No!]

https://forums.informaction.com/viewtopic.php?t=5484

Page 1 of 1

ABE it's a spyware? [No!]

Posted: Wed Dec 08, 2010 12:57 pm
by marc80
I noticed some strange behavior with ABE active.
Several unauthorized connections to strange sites.
Several collecting and reporting information.
With ABE off, this seems to be no.

My question is: ABE is a spyware?

Re: ABE it's a spyware?

Posted: Wed Dec 08, 2010 3:17 pm
by dhouwn
http://noscript.net/abe/wan

Re: ABE it's a spyware?

Posted: Wed Dec 08, 2010 3:59 pm
by marc80
Thanks.
I suppose NoScript could (optionally) lookup the public ip and include it in the abe LOCAL pseudo-list. NoScript detects your public (WAN) IP by sending a completely anonymous.
I understand https: //secure.informaction.com/ ipecho.

But.
I not understand.

http:/ /www.valicert. com/
http:/ /certificates. godaddy.com

What do they mean?
What they do with my data?

My data, because "completely anonymous" it's false.
My IP, my user agent, my platform... all my settings are transmitted.

1. ABE it's a (also) spyware.
2. ABE is not transparent.

Re: ABE it's a spyware?

Posted: Wed Dec 08, 2010 4:49 pm
by Giorgio Maone
marc80 wrote:
I understand https: //secure.informaction.com/ ipecho.

But.
I not understand.

http:/ /www.valicert. com/
http:/ /certificates. godaddy.com

What do they mean?
They are automatically asked by Firefox to validate the security.informaction.com SSL certificate:
http://en.wikipedia.org/wiki/Online_Cer ... s_Protocol

Side-requests like this happen for almost any secure web site you contact.
marc80 wrote: What they do with my data?
Absolutely nothing. They just tell your browser that the SSL certificate is not expired and is not in a revocation blacklist.
marc80 wrote: My data, because "completely anonymous" it's false.
My IP, my user agent, my platform... all my settings are transmitted.
You're wrong. Only your IP (obviously, otherwise TCP/IP couldn't work) is transmitted (not stored).
ABE carefully strips away all your other data normally transmitted by the browser, such as user agent, cookies and any other traceable HTTP header.

If you really have a privacy requirement so high to need your IP to be concealed, you should really use an anonymous proxy (this feature would be automatically disabled anyway, since it's useless behind a proxy).
On the other hand, your IP alone (unless you've got a static IP and your PC is the only device natted behind it) is never enough to uniquely track you.
marc80 wrote: 1. ABE it's a (also) spyware.
2. ABE is not transparent.
3. This is defamation :)

Re: ABE it's a spyware?

Posted: Wed Dec 08, 2010 6:35 pm
by marc80
I understand, thanks.

If I turn off "WAN IP() LOCAL" this traffic is stopped? (whitout turn off all ABE)

Re: ABE it's a spyware?

Posted: Wed Dec 08, 2010 6:48 pm
by Giorgio Maone
marc80 wrote:I understand, thanks.

If I turn off "WAN IP() LOCAL" this traffic is stopped? (whitout turn off all ABE)
Yes it is.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited