Flash as spyware
Bill Sconce
sconce at in-spec-inc.com
Tue Mar 28 22:12:01 EST 2006
I just came across this. (Thanks to Bill McGonigle)
http://wiki.mozilla.org/Roadmap_Scratchpad
...Cookies provide limited storage space (on the order of a few
kilobytes), require the application developer to manually encode
and decode any structure more complex than a simple string, and
are transmitted back to the server on each request. In response
to these limitations, some application developers are using the
Flash plugin simply to gain access to a reliable and capable
local store.
If there hadn't been reasons to avoid Flash before, that's one.
"Cookies" which even the browser doesn't know about. Sweet.
(Did anyone here know that installing Flash gives websites the
ability to write to and read from your hard disk? I didn't.)
A "reliable and capable local store". Botmasters must *love*
Flash.
-Bill
More information about the gnhlug-discuss
mailing list