Channel News and Analysis - Channel Insider

Home

Channel News and Analysis

Microsoft to Change IE Behavior to Block Spoofing Attacks

DATE: 2004-01-29

By Larry Seltzer

Article Rating:

/ 0

Rate This Article:

Add This Article To:

Digg this

Del.icio.us

Slashdot

Y! My Web

E-mail

Furl

Google

Simpy

Spurl!

PDF Version

http://username:password@server/file.html syntax to be disallowed by an upcoming software update. Problematic feature was recently made more dangerous by the unveiling of a display bug in browser.

Microsoft Corp. has announced in a support document that it will be releasing a software update to Internet Explorer and Windows Explorer to disable the use of certain syntax in HTTP URLs. The syntax, designed to allow a username and password to be passed to a password-protected page, has a history of abuse. The company did not give a timeline for the release of the patch.

The syntax takes the form http[s]://username:password@server/file.html, such as http://joe:blow@www.microsoft.com/, where "joe" is the username and "blow" is the password. But a site that does not look for the username and password will ignore the values passed, and only the string after the "@" symbol is used for the domain name. Other browsers support this syntax to varying degrees.

To read the full story, click here.

	Discuss Microsoft to Change IE Behavior to Block Spoofing Attacks

	>>> Be the FIRST to comment on this article!



	>>> More Channel News and Analysis Articles >>> More By Larry Seltzer

Email Article To Friend ♦ Print Version Of Article ♦ PDF Version Of Article

Vizard: IBM Gets Principled About the Channel
Big Blue looks to improve its reputation with a Principles of Engagement document governing how internal salespeople deal with the channel.

CHANNEL DEEP DIVES
Careers	Linux and Unix
Computer Networking	Printers
Security	SMB Partner
Storage	Surveys
Solution Builder	Messaging/Collaboration
Dell Resellers	Microsoft Partners

SIGN UP FOR CHANNEL INSIDER NEWSLETTERS
Reliable, timely information on the business of technology. Sign up now.

Ziff Davis White Paper Library

Baseline ROI Calculators

eWEEK Labs RFPs and Tools

CHANNEL RESOURCE CENTER

HP StorageWorks Scalable NAS is highly available, scalable network-attached storage for any industry solution. To learn how you can take full advantage of fault-tolerant NAS that seamlessly scales capacity and performance, visit: http://www.hp.com/go/scalablenas

Feature Video: What Can Green Do For You?
There are many ways that systems can be run faster or more efficiently, using less energy and thereby reducing costs. Watch now!

Free Trial: Microsoft Dynamics™ CRM Online

Microsoft-hosted solution offers you advanced customer relationship management capabilities without a major investment in IT and staffing.
Try It for free for 30 days!

Sponsored Links

BMore partners and opportunities: Join Partnerpedia

The New Latitude: Dell’s longest battery life yet.

Improve the customer experience with Dialogue

Rackspace:The Smart and Cost-Effective IT Solution

Meet the demand for green technology with HP desktops

Download the “Best Antivirus Product of 2007”

Channel Insider Contact Us \| Advertise \| Site Map \| VARs \| System Builder

	Storage Devices \| Networking Security \| Network Infrastructure \| Wireless Networking \| Database Management Systems \| PC Desktops \| Web Programming \| Enterprise Solutions Linux Operating Systems \| Mac Operating System \| Mobile Messaging \| Internet Telephony Microsoft Windows News \| Google Watch \| IBM Watch


	Ziff Davis Enterprise Home \| Contact Us \| Advertise \| Link to Us \| Reprints \| Magazine Subscriptions \| Newsletters Tech RSS Feeds \| White Papers \| ROI Calculators \| Tech Video
	Baseline \| Careers \| Channel Insider \| CIO Insight \| DesktopLinux \| DeviceForge \| DevSource \| eSeminars \| eWEEK \| Enterprise Network Security \| LinuxDevices \| Linux Watch \| Microsoft Watch \| Mid-market \| Networking \| PDF Zone \| Publish \| Security IT Hub \| Strategic Partner \| Web Buyer's Guide \| Windows for Devices
	Developer Shed \| Dev Shed \| ASP Free \| Dev Articles \| Dev Hardware \| SEO Chat \| Tutorialized \| Scripts \| Code Walkers \| Web Hosters \| Dev Mechanic \| Dev Archives \| igrep Use of this site is governed by our Terms of Use and Privacy Policy
	Copyright ©1996-2008 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. Channel Insider is a trademark of Ziff Davis Enterprise, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise, Inc. is prohibited.

Channel Insider Contact Us \| Advertise \| Site Map \| VARs \| System Builder

	Storage Devices \| Networking Security \| Network Infrastructure \| Wireless Networking \| Database Management Systems \| PC Desktops \| Web Programming \| Enterprise Solutions Linux Operating Systems \| Mac Operating System \| Mobile Messaging \| Internet Telephony Microsoft Windows News \| Google Watch \| IBM Watch


	Ziff Davis Enterprise Home \| Contact Us \| Advertise \| Link to Us \| Reprints \| Magazine Subscriptions \| Newsletters Tech RSS Feeds \| White Papers \| ROI Calculators \| Tech Video
	Baseline \| Careers \| Channel Insider \| CIO Insight \| DesktopLinux \| DeviceForge \| DevSource \| eSeminars \| eWEEK \| Enterprise Network Security \| LinuxDevices \| Linux Watch \| Microsoft Watch \| Mid-market \| Networking \| PDF Zone \| Publish \| Security IT Hub \| Strategic Partner \| Web Buyer's Guide \| Windows for Devices
	Developer Shed \| Dev Shed \| ASP Free \| Dev Articles \| Dev Hardware \| SEO Chat \| Tutorialized \| Scripts \| Code Walkers \| Web Hosters \| Dev Mechanic \| Dev Archives \| igrep Use of this site is governed by our Terms of Use and Privacy Policy
	Copyright ©1996-2008 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. Channel Insider is a trademark of Ziff Davis Enterprise, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise, Inc. is prohibited.