The Mudcat Café TM
Thread #136808 Message #3126195
Posted By: JohnInKansas
01-Apr-11 - 09:43 AM
Thread Name: Tech: Overrun by ads at Mudcat
Subject: RE: Tech: Overrun by ads at Mudcat
The thread title here is misleading, as it indicates a complaint about too many ads at mudcat.
The PROBLEM being debated is the appearance of a new and slightly different XSS filter in recent updates of IE. Some persons using other browsers have also reported similar problems, but the reports, for IE and for others, are somewhat vague thus far.
Max has commented, in the other thread linked in the second post of this thread. That thread directly addresses what's being discussed here.
For information: XSS is a form of browser/server vulnerability that in some cases can allow malware to get on your computer. FaceBook, MySpace, and other "social network" sites have been primary targets for this kind of attack, as they apparently require you to use settings and add-ins that favor accessibility of the vulnerability.
XSS attacks have recently supplanted previously encountered kinds of malware, and are at present the most frequently occuring form of attack on the web. Opinions vary as to how serious the threat is, since despite its frequency most actual infections have been more annoying than destructive; but the potential for destructive attacks is real. It is likely that there is increasing need for some defenses against such attacks.
IE has included XSS defenses since IE4, but the most recent releases have apparently changed how it works (esp IE9). Browsers other than IE have, or can have, protections against this form of attack. For some, you must know that you need to download and install add-ons in order to have any defenses.
Any browser that includes XSS defenses should allow you to adjust your settings to minimize difficulties - but we haven't completely figured out just how to do that for all of the multiplicity of browsers people use here. At least that's how I interpret the recent flurry of complaints.
If you really are interested in what progress is being made, I'd suggest visiting the other thread where it's more apparent what discussion is actually helpful.
But that's just my (for now) opinion.
John