Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Information leak via referer #7

Open
GoogleCodeExporter opened this issue Mar 14, 2015 · 0 comments
Open

Information leak via referer #7

GoogleCodeExporter opened this issue Mar 14, 2015 · 0 comments
Labels
auto-migrated Priority-Medium Type-Defect

Comments

@GoogleCodeExporter
Copy link 

When I send URLA from phone to 
http://send-to-computer.appspot.com/me?browser=NNNNNNN and I use browser click 
the link.
The owner of URLA will know I am from 
http://send-to-computer.appspot.com/me?browser=NNNNNNN via http referer.

The owner may visit the url by accident and make me missed another url I send. 
He may even know what web sites I visit.

Possible solution:
/me?browser=NNNNNNN redirect to /redirect?url=URLA and redirect again to URLA.
Then the owner of URLA will only know I am from /redirect.

Maybe there are other solutions, I don't know...

Original issue reported on code.google.com by [email protected] on 13 Jan 2011 at 3:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
auto-migrated Priority-Medium Type-Defect
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@GoogleCodeExporter