Be careful when using the clipboard, web-pages can tap it

Started by Die Hard, February 28, 2006, 07:18:07 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

Die Hard

February 28, 2006, 07:18:07 PM
Text copied onto the clipboard can be seen on the web.

http://www.theinquirer.net/?article=29856

Die Hard :)
I create and edit my posts in GS-NOTES

Ripley

#1
February 28, 2006, 10:10:25 PM
Die Hard  :)

Thnx for the heads up!  :thumbsup:

Didn't know this.  I am always amazed at what I learn here at Landzdown!  :thumbsup:

ripley

JOSEPH

#2
March 01, 2006, 07:13:30 AM
That was quite the read. And to think how they used to chitter chat about how easy prey 98's were to this type of occurance.

SpiritWind

#3
March 04, 2006, 07:36:38 AM
 :D The Author of the Inquirer article recommends setting the "Allow paste operations
      via script" to "Disable" ; both the Editor of Spyware Weekly Newsletter and Mitch
      recommend setting this to "Prompt". I wonder if the latter is sufficient to avoid
      the info in the clipboard from being seen on the web !?
For the BEST in what counts in Life :

www.tacf.org

Die Hard

#4
March 04, 2006, 09:19:50 AM
Quote from: SpiritWind on March 04, 2006, 07:36:38 AM
:D The Author of the Inquirer article recommends setting the "Allow paste operations
      via script" to "Disable" ; both the Editor of Spyware Weekly Newsletter and Mitch
      recommend setting this to "Prompt". I wonder if the latter is sufficient to avoid
      the info in the clipboard from being seen on the web !?

If you go to that test-page having the settings set to "Allow" , the info in the clip-board is copied into the page, without a prompt or anything
I copied your post and went there :

http://www.sourcecodesworld.com/special/clipboard.asp



When you have set it to "Prompt" a window will open where you allow or deny:



And if you click no, the info kept in the clip-board is safe:


[attachment deleted by admin]
I create and edit my posts in GS-NOTES

Corrine

#5
March 04, 2006, 03:42:07 PM
Unlike IE, this feature is disabled in Firefox.  In the event, however, you do wish to allow copy/paste on a particular server, you can use the AllowClipboard Helper extension to edit the user.js for just that site.  (Note:  after adding the site, you will have to restart Firefox) 


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Tarnak

#6
March 05, 2006, 01:39:38 AM
  A few years ago when I knew less than I know now( :hysterical: Still don't know much!!) I came across this site- http://bcheck.scanit.be/bcheck/ - ,and from memory it tested for Clipboard vulnerability. To this day I do not use clipboard. :(

babyoh

#7
March 12, 2006, 07:53:09 AM
 :rose: wow. i sure do learn alot here  :thumbsup:
and, Tarnak, thanks for the bcheck.scanit.be link -- very cool

:gwave:

Paddy

#8
March 12, 2006, 03:35:02 PM
I seem to have passed the test ....

Quote
Browser Security Test Results
Dear Customer,
The Browser Security Test is finished. Please find the results below:
High Risk Vulnerabilities   0
Medium Risk Vulnerabilities   0
Low Risk Vulnerabilities   0



numbnuts.. :thumbsup:
This is one race of people for whom psychoanalysis is of no use whatsoever - Sigmund Freud (about the Irish)

Never argue with a fool, they will lower you to their level and then beat you with experience.
Print
Go Up Pages1
User actions