Click hereChildren:, Grades , Espionage, Juvenile ,literature, Children's 9-12 - Crafts , Hobbies, Juvenile ,Nonfiction, Crafts & Hobbies ,- General, Juvenile Nonfiction, / Crafts & Hobbies, Animals, Hobbies, quizzes & games ,(Children's/YA), Interactive & activity books & packs, People & places, (Children's/YA), Animals - General, Novelty & Activity Books, dance ,class,ambala,anilkumar,webs,searchstops,www,2011,2012,best dance site 2011,best dancesite2012,bestdancesite2013,danceing,bboying,bgirling,kendriya,vidyalaya,ghandhi,ji,kutta,kamina,salaindian,languages,sirf tum,sirf mai,amitabh,bacchan,Anil Kumar bturkiya,2011 fashion,2010 fashion,accesories,Accessibility,accessories,Adidas AG,Al,alex perry,Alexander McQueen,Alford,American European Latin Americandesigners,AnnaSui,apparel,architecture, Area,Planning,andRenewal,Art,attitudes,Auctions,Australia,autumn,Awards,Babies,backstage,bad,Badinter,banarsi,BarcelonaFaWeek,Bardot,Bardotfashion,BarneysNewYork,BathingSuits,Beauty,beautyadvice,beautydirectory,beautyexpert,beautymagazine,beautytips,bench,benchflash,bestdenim,bestfashionmagazine,Bestjeansaround,bikini,Bill,blackdress,blank,Blog,blogging,BlogsandBlogging(Internet),blouse,body,boutique,bowie,Brazil,bridal,BruceCameron,Bundchen,CalvinKlein,Canadianfashionmagazine,candycouture,CareersandProfessions,casual,catwalk,catwalkrunway,CelebFashions,CelebGossip,Celebrities,Celebrity,Celebrity Fashion,Celebrity Fashions,Celebrity Gossip,Celebrity Hairstyles,Celebrity Photos,celebrity profiiles, celebritytrends,CHANEL,channel,Charles,chic,ChildrenandYouth,childrens,China,Chloe,Chow,Christian,Christian Dior,Cindy CrawfordClark,clothes.,clothing,cnet,collections,collette dinnigan,combats,competitions,Coney Island (NYC),confessions,contact topman,cosmetics,Cosmetics and Toiletries,Council of Fashion Designers of America,couture,crafted,creative,creativecommunity,creativenetwork,creativeprofessional,creative professionals,Credits,crops,Cunningham,Customs,Cutrone,dance,david,Deaths (Obituaries),Decorations and HonorsDella Femina,denim,design,designer,designer accessories,designer bags,designer clothes,designer clothing,designer collections,designer fashion,designer handbags,designer profiles,designer shoes,designers,designers collections,Diana,diesel,Dior,dirty smart,discount mens clothes,Divorce, DKNY,Dolce &Gabbana,DonnaKaran,DoutzenKroes,dress,Dresses,drunknmunky,DVDs,edgy,eh,electronics,Elisabeth,Elle,Entertainment News,Etiquette and Manners,express post delivery,fabric,fabulous,facial,fall,Families and Family Life,fashion,Fashion Accessories,Fashion and Apparel,Fashion articles,fashion beauty catwalk photography,Fashion Blog,Fashion Blogger,Fashion Central,fashion clothes,fashion design,fashion designer,fashion designers,Fashion information,fashion magazine,fashion merchandising,fashion mode beauty,fashion models,fashion news,Fashion Pakistan,fashion photo galleries,fashion pictures,fashionreview,fashion shows,fashion television, fashion television, the channel,fashion tips,fashion trends,fashion trends 2008,fashion tv,fashion tv france,fashion tv hot,fashion tv online,fashion tv satellite,fashion videos,Fashion Week,fashionweeks,fashionistas,fashionmagazine.com,fashions,fashiontelevision,fashiontv,fashionz,Fenchurch,Fendi,Ferguson,Fine Jewelry.,firetrap,footwear,Fragrance,free stuff,FT,FT online,ftv,ftvfashion,furnitureg-star,g-starraw,gadgetblog,gadgetnews,Gaga,gallery,Gap,garments,Gaultier,Gerald,Giles,Giorgio Armani,girls clothes,Gisele,Givenchy,Gore, Gossip,Gowanus Canal (NYC),Greenfield,Grief (Emotions),Gucci,Guess,H&M,hair, hairstyle,Hamburg (Germany),Hats and Caps,haute couture,health,Helena Christensen,Helmut Lang,henleys,Henry,high fashion,high street,high street clothing,highstreet,hip,Hollywood Fashion,Hollywood gossip,Hollywood Rumors,Hollywood Stars,home,hoodies,horoscopes,Hot,hot stuff,HQ,Iman,Imber,indian,industry,iphone, Issey,jackets,Japan,Jean Paul,Jean Paul Gaultier,jeans,Jeff,Jerry,Jil,Jil Sander,Joanna,John Galliano,Jovovich,jumpers,just,kameez,Karl Lagerfeld,kate moss,kate moss collection,Kaus,Kawakubo,Kelly,kidsclothes,knits,knitwear,Kramer,kurta,L'Oreal,LA,labels,Lacroix,ladies fashion,ladies fashion clothes,ladies fashions,Lady,latest catwalk pictures,latest fashion,latest mens clothing,lbd,Life and style,lifestyle,Lincoln Center for the Performing Arts,lingerie,little black dress,Live Streaming,London,London (England),look, Lott,Louis Vuitton,Love (Emotion),Luca Luca,luxury,MAC, Madrid Fashion Week,magazine,magazines,make-up,makeover,makeup, makeupartists,makeuptips,MalSirrah,Manhattan(NYC),Marilyn,Marriages,MartinMargiela,Men and Boys,men women's fashion,Men's Clothing,Men's Shoes,Menkes,mens,mens clothes,mens clothing,mens denim,mens fashion,mens fashion gifts,mens gift ideas,mensjackets,mens jeans,mens shoes,mens shorts,mens socks,mens suits,mens underwear,menswear,Merchandising,Message Boards,Michael,Mickey,Milan,Minter, miso,miss sixty,Miyake,Mobile Content,moda,mode,modeling,Models,Models (Professional), monster,movies,nails,net-a-porter,net-a-porter.com,netaporter,new fashion trends,New York, New York Fashion,new zealand fashion,news,Next,Next Directory,Next Electrics,Next Flowers,next.co.uk,NikasNikeInc,numberonefashionmagazine,nz,oasis,oasisstores,oasis-stores,oasis.co.uk,oasis.com,oasis.net,ofofficial,Oliver,onlie fashion,online shopping,online store,Oprah,Pakistan,Pakistan Fashion,Pakistan Fashion shows,Pakistan shows,Pakistani,Pakistani Designers,Pakistani Fashion,Pakistani FashionDesigners,Pakistani Models,Paparazzi,Paris,party,partydress,partydresses,PhotoGalleries,photographers,photography,Photos,picture,pictures,Pixie,Pixie dress,Pixie Lott,podcast,Prada,pret-a-porter,Prince of Wales,Princess of Wales,Pucci,Race,ready towear,ready-to-wear,Rei,Republic,republic shop,Reviews,romance,Rosa Cha,rtw,Runway,runway shows,Saint Laurent, salon,Sander,Sao Paolo,Sarah,sari,sass & bide,savvy,Scandal,Separations andAnnulments, sex, sexy, shalwar, shirts, shoes, Shop, Shop online, shopaholic, Shopping, Shopping and Retail, short, shorts, shows, Showtimes, Simone, size 10, size 12, size 14, size 6, size 8, Skin, skincare, skirt, skirts, sleek, Sneakers, Soccer, social network, Sotheby''s, soul cal, soul cal deluxe, soundtrack, Spanish Latino fashion, speechless, sping, sportswear, spring, spring 2010 fashion, spring collection, spring fashion, spring summer collection, spring summer fashion, ss10 fashion, star styles, stores, street fashion, street style, style, stylemail, subscription, summer, Suntan, super model, Superfund, supermodels, Suzy, sweats, swimwear, Synopsis, t-shirts, Tank Tops, tech blog, technews,technology,teenclothes,teenfashion,teenstyle,teenvoguetelegraphfashiontextiles,threads,Tipper,Tokyo,TomFord,top,topmanaccount,topmancard,topmandelivery,topmangiftcard,topmanhelp,topmannews,topmanpressoffice,topmanrecruitment,topmanreturns,topmansale,topmanstores,topmanstudent,discount,topmantermsandconditions,tops,topshop,topshop.com,TorontoTrailers,trend,Trends,trendy,trousers,uk,undergarments,United States Politics and Government,Upper East Side (NYC),User Ratings,Victoria's Secret,Video,Viktor Rolf,vila,Vogue,Warehouse,Warehouse Clothes,Warehouse fashion,Waste Materials and Disposal,watch fashion tv,watch fashion tv online,Watches,Winfrey,winter,woman fashion,woman's fashion,Women and Girls,women fashion,women´s clothes,women´s clothing,women´s fashion,Women's Clothing, women's fashion,Women's Handbags,Women's Shoes,womens,womens accessories,womens clothes,womens clothing,womens fashion,womens fashion clothing,womenswear, women’s fashion magazine,World Cup (Soccer),www.oasis-stores.com,Yves,Yves Saint Laurent,prom clothing,going out clothes,clothes shopping,buy clothes,buy dress,Irish Fashion Ireland,beauty news,Indian Ethnic fashion,Indian Fashion,India Fashion,Fashion India,Ethnic fashion,Indian Garments,Indian Clothings,Indian Wedding garments,Wedding collections,Ethnic garment designs,Indian models,Indian actresses,Indian Actors,Bollywood actresses,Bollywood stars,Bollywood Gossip,Online garment store,b2C garment portalLove and Romance,Romantic lifestyles,Honeymoon resources,honeymoon planner,marriage, andhoneymoon,pregnancy,parenting and kids,bollywood,wedding,wedding dresses, sexual,problems,indian,women,modellin,gagencies,Salwarkameez,GaghraCholi,Lachhas,sharara,Garment,Mumbai,Bombay,India,Model,Actress,Love,Parenting,Astrology,Asian,Designers.,toronto, fashion,canadian ,fashion ,designers,toronto ,designers,canada, fashion,,toronto ,fashion ,week,toronto,vintage,Definition,Synonyms,craze,fad ,Yantra: Dharmic Traditions, Sanskrit, Chakra, Vritti, Shatkona, Star of David, Hindu Symbols: Lingam, Aum, Kamandalu, Hindu Iconography, Yantra, Nandi, Tilaka, Kalasha, Trishula, Padma, Sri Yantra, Om ParvatSwastika, Shri Yantra, Karma,Hindu Symbols: Lingam, Aum, Kamandalu, Hindu Iconography, Yantra, Nandi, Tilaka, Kalasha, Trishula, Padma, Sri Yantra, Om Parvat ,Symbol (Hinduismus): Om, Swastika, Linga, Mandala, Mudra, Bindi, Yantra, Tilaka, Abhayamudra, (German Edition),Monument Indien: Taj Mahal, Yantra Mandir, Rock Garden, Porte de L'inde, Mausolée D'itimâd-Ud-Daulâ, Bibi Ka Maqbara, Sanskar Kendra, Raj Ghat (French Edition),Rajasthan: Désert Du Thar, Ârâvalli, Shekhawati, Bishnoï, Musique Rajasthanie, Yantra Mandir, Attentats de Jaipur, Rajput (French Edition) ,Matrix success. Yantra, Mandala, psychogram, mentogrammy in

Thursday, January 13, 2011

How the Attack Works Spoofing the Whole Web

Fig _1.1


You may think it is difficult for the attacker to spoof the entire World Wide Web, but it is not. The attacker need not store the entire contents of the Web. The whole Web is available on-line; the attacker’s server can just fetch a page from the real Web when it needs to provide a copy of the page on the false Web.




The key to this attack is for the attacker’s Web server to sit between the victim and the rest of the Web. This kind of arrangement is called a “man in the middle attack” in the security literature.


URL Rewriting

The attacker’s first trick is to rewrite all of the URLs on some Web page so that they point to the attacker’s server rather than to some real server. Assuming the attacker’s server is on the machine www.attacker.org, the attacker rewrites a URL by adding http://www.attacker.org to the front of the URL. For example, http://home.netscape.com becomes http://www.attacker.org/http://home.netscape.com. (The URL rewriting technique has been used for other reasons by several other Web sites, including the Anonymizer and the Zippy filter. See page 9 for details.)

Figure 1 shows what happens when the victim requests a page through one of the rewritten URLs. The victim’s browser requests the page from www.attacker.org, since the URL starts with http://www.attacker.org. The remainder of the URL tells the attacker’s server where on the Web to go to get the real document.


Figure 1: An example Web transaction during a Web spoofing attack. The victim requests a Web page. The following steps occur: (1) the victim’s browser requests the page from the attacker’s server; (2) the attacker’s server requests the page from the real server; (3) the real server provides the page to the attacker’s server; (4) the attacker’s server rewrites the page; (5) the attacker’s server provides the rewritten version to the victim.


Once the attacker’s server has fetched the real document needed to satisfy the request, the attacker rewrites all of the URLs in the document into the same special form by splicing http://www.attacker.org/ onto the front. Then the attacker’s server provides the rewritten page to the victim’s browser.

Since all of the URLs in the rewritten page now point to www.attacker.org, if the victim follows a link on the new page, the page will again be fetched through the attacker’s server. The victim remains trapped in the attacker’s false Web, and can follow links forever without leaving it.





Jai Shree Raam
at 2:09 AM

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

.......

Related Posts Plugin for WordPress, Blogger...