Re: Iceweasel updates

To: debian-user@lists.debian.org
Subject: Re: Iceweasel updates
From: Joe <joe@jretrading.com>
Date: Tue, 3 Nov 2015 08:27:42 +0000
Message-id: <[🔎] 20151103082742.79e46618@jresid.jretrading.com>
In-reply-to: <[🔎] 20151102225303.GD18838@copernicus.demon.co.uk>
References: <[🔎] 1446466786.28233.3.camel@gmail.com> <[🔎] 20151102123543.1ca88f30@abydos.stargate.org.uk> <[🔎] 20151102124813.GA19485@zira.vinc17.org> <[🔎] 02112015125815.146458a33a44@desktop.copernicus.demon.co.uk> <[🔎] 20151102131739.GC19485@zira.vinc17.org> <[🔎] 02112015134104.9a0ad95d97d4@desktop.copernicus.demon.co.uk> <[🔎] 20151102135824.GE19485@zira.vinc17.org> <[🔎] 20151102150019.GA18838@copernicus.demon.co.uk> <[🔎] 20151102220238.GA3437@zira.vinc17.org> <[🔎] 20151102225303.GD18838@copernicus.demon.co.uk>

On Mon, 2 Nov 2015 22:53:03 +0000
Brian <ad44@cityscape.co.uk> wrote:


> 
> An attacker must inject a payload into a web page that the user
> visits. When the page loads in the user’s browser the attacker’s
> payload will be executed. A user would likely have no knowledge of
> this, irrespective of whatever browser or user-agent string is being
> used.
> 
> Without the payload (which the bank's site has delivered) the security
> of the browser is not compromised. If a password were to be obtained
> the bank is complicit in the action. I expect they would take
> responsibilty for this.
> 
> 
You were going fine until the last sentence...

-- 
Joe

Reply to:

Follow-Ups:
- Re: Iceweasel updates
  - From: Chris Bannister <cbannister@slingshot.co.nz>

References:
- Iceweasel updates
  - From: Jack Dangler <tdldev@gmail.com>
- Re: Iceweasel updates
  - From: Brad Rogers <brad@fineby.me.uk>
- Re: Iceweasel updates
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: Iceweasel updates
  - From: Brian <ad44@cityscape.co.uk>
- Re: Iceweasel updates
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: Iceweasel updates
  - From: Brian <ad44@cityscape.co.uk>
- Re: Iceweasel updates
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: Iceweasel updates
  - From: Brian <ad44@cityscape.co.uk>
- Re: Iceweasel updates
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: Iceweasel updates
  - From: Brian <ad44@cityscape.co.uk>

Prev by Date: Re: Installing mSATA Solid State Drive in Dell Precision M3800
Next by Date: Re: Anybody know why aptitude is not installed by default in Sid?
Previous by thread: Re: Iceweasel updates
Next by thread: Re: Iceweasel updates
Index(es):
- Date
- Thread