[sf-lug] Safer Browsing
Michael Paoli
Michael.Paoli at cal.berkeley.edu
Tue Feb 26 22:29:33 PST 2019
> From: "Rick Moen" <rick at linuxmafia.com>
> Subject: Re: [sf-lug] Safer Browsing
> Date: Tue, 26 Feb 2019 15:52:09 -0800
> I wasn't going to say anything, but posting links like
> "http://links.nordvpn.com/u/click?_t=f675640029a34d1f9a5b14c05f06483a&_m=f7d48b5add0a43e081be8227eb53f86b&_e=KbL78jwVf3VoQqu1p9r-iuC8Dv9p9cjBePJhdwYDe9W3FQ-f-A8LwNNhy8no6r92iAUD2VXkkK2h2ehyhEGn0Z_h3VCxfdF0GHt_M2jFscrLh5r1RsAbrzQI6FGP30i4jtt1wp7ZDc3IoSqZbOdKjoYZlAHKcy_uTCvRDaDmLB7swsT8qtm63TWAn4UA2w6F6IaYFts40cYa4LfnUBo6BI4FPr7bSARtBkHwxhaJRAa0Sa-FplHke-WTAF-kcq7p3fzcbykia7kFgKfp3BoH6gvXn-61yEfN2Za7y_yOorhrN0-5_xspAO-JtynWPTkPNnWCQVwbgG_RvClfXBwD4aWyGvr5PU3XCvLl-IyVmkc%3D"
> in a posting about "tools for security and privacy online"
> did strike me as ironic in the extreme.
Yum, look at all those tracking bits! <cough, cough>:
$ curl -I
'http://links.nordvpn.com/u/click?_t=f675640029a34d1f9a5b14c05f06483a&_m=f7d48b5add0a43e081be8227eb53f86b&_e=KbL78jwVf3VoQqu1p9r-iuC8Dv9p9cjBePJhdwYDe9W3FQ-f-A8LwNNhy8no6r92iAUD2VXkkK2h2ehyhEGn0Z_h3VCxfdF0GHt_M2jFscrLh5r1RsAbrzQI6FGP30i4jtt1wp7ZDc3IoSqZbOdKjoYZlAHKcy_uTCvRDaDmLB7swsT8qtm63TWAn4UA2w6F6IaYFts40cYa4LfnUBo6BI4FPr7bSARtBkHwxhaJRAa0Sa-FplHke-WTAF-kcq7p3fzcbykia7kFgKfp3BoH6gvXn-61yEfN2Za7y_yOorhrN0-5_xspAO-JtynWPTkPNnWCQVwbgG_RvClfXBwD4aWyGvr5PU3XCvLl-IyVmkc%3D'
HTTP/1.1 303 See Other
Date: Wed, 27 Feb 2019 06:21:32 GMT
Content-Length: 0
Connection: keep-alive
Server: openresty/1.13.6.2
Vary: Origin
Location:
https://www.mozilla.org?utm_source=SecurityTips&utm_medium=email&utm_campaign=2internetbrowsers_all
Set-Cookie: iterableEndUserId=seameadowlake%40gmail.com;
Max-Age=31536000; Expires=Thu, 27 Feb 2020 06:21:32 GMT; Path=/;
Domain=.nordvpn.com
Set-Cookie: iterableEmailCampaignId=503620; Max-Age=86400;
Expires=Thu, 28 Feb 2019 06:21:32 GMT; Path=/; Domain=.nordvpn.com
Set-Cookie: iterableTemplateId=712942; Max-Age=86400; Expires=Thu, 28
Feb 2019 06:21:32 GMT; Path=/; Domain=.nordvpn.com
Set-Cookie: iterableMessageId=f7d48b5add0a43e081be8227eb53f86b;
Max-Age=86400; Expires=Thu, 28 Feb 2019 06:21:32 GMT; Path=/;
Domain=.nordvpn.com
Set-Cookie:
XSRF-TOKEN=96d7d0b0d4e29af9971a7a12c5802c98f2021d01-1551248492791-707c198a644a9cd89a2d00bc;
Path=/
Request-Time: 4
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: sameorigin
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: master-only
Content-Security-Policy-Report-Only: ; report-uri
https://sentry.io/api/22065/security/?sentry_key=d6d9333ad25747ba8107e7681de79ec4
$
Ooooh, and http, so it can go across in the clear, so it can be
sniffed, manipulated, ...
So ... I think perhaps somebody meant to say:
https://www.mozilla.org?utm_source=SecurityTips&utm_medium=email&utm_campaign=2internetbrowsers_all
More information about the sf-lug
mailing list