Showing posts with label referrer. Show all posts
Showing posts with label referrer. Show all posts
Monday, October 24, 2011
Stripping Referrer for fun and profit
tldr: New methods for client side only (no server side script) referrer stripping in POST & GET requests. Code at the end.
Referer is that tiny bit of information that browser sends to servers while you click your way through interwebs, always carrying the URL of the webpage you've clicked the link at (more or less). It's useful for webdevelopers. For example, if they know you've reached their page from Google search results they can tailor the webpage especially for you. Of course, it's a privacy leak, so users can turn off referrer sending in current browsers. All in all, Referer is usually spoken in SEO circles, which is not my pair of shoes. However, at least one thing makes Referer very interesting from security point of view.
Subscribe to:
Comments (Atom)