Menu
What's new
By:
Filters Better Search

This is the kind of crap I have to deal with

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

It is getting pretty bad out there - and this is driving users to block even more aggressively...

It's stuff like this that also hurts the reputation of the advertiser and the web sites...
 
So the next line of defense is for antivirus software to put every web image through a jpeg (re)compressor to force the image content to be somewhat scrambled?

What I note however is that this relies on computers being ALREADY compromised, so they can run the image-carried payload. This is more a payload delivery system than an infection vector, unless one of them can also exploit a flaw in an image decoder (Microsoft did fix a few of these over the years).
 
RMerlin said:
This is more a payload delivery system than an infection vector, unless one of them can also exploit a flaw in an image decoder (Microsoft did fix a few of these over the years).
Click to expand...

Apple had an issue with one of their graphics renderers recently - had to do with TIFF if I recall - and the MSFT issue did affect other platforms...
 
There's no limit to inventiveness - there was a really neat hack a while back that used the gstreamer frameworks that embedded 6502 assembler inside an audio file that allowed root exploits - that one was pretty specific to the versions of the codecs and linux kernel version...

http://hackaday.com/2016/11/15/a-linux-exploit-that-uses-6502-code/

That's one of the reasons why things that execute code inside of data files are scary from a security perspective - I'm just waiting for someone to get clever with WebGL...
 
RMerlin said:
So the next line of defense is for antivirus software to put every web image through a jpeg (re)compressor to force the image content to be somewhat scrambled?

What I note however is that this relies on computers being ALREADY compromised, so they can run the image-carried payload. This is more a payload delivery system than an infection vector, unless one of them can also exploit a flaw in an image decoder (Microsoft did fix a few of these over the years).
Click to expand...

I use a live cd, it works great. Once I reboot it's gone.

https://distrowatch.com/table.php?distribution=tens
 
the more malicious ads there are the more people will block ads, not just that but resource usage is a concern too. On some sites with bad ads video stutters, using script block solves the issue as it wont allow you to watch with adblock enabled.
 
You must log in or register to reply here.

Similar threads

J
Compiling a extreamly basic Asus firmware stripped of every single add-on made
Replies
4
Views
1K
Hawk
Hawk
U
Solved Is it possible to write the Port Forwarding table at the command line and have it appear in the web GUI?
Replies
2
Views
1K
username667
U
B
Scribe /usr/bin/logger messages don't make it to the log file - intermittent issue
Replies
15
Views
1K
bibikalka
B
L
Looking to finish a wireless deployment I started with MikroTik switch-routers
Replies
14
Views
3K
coxhaus
C
RMerlin
2021 State of the router
2
Replies
35
Views
15K
strunker
S

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 692 (members: 14, guests: 678)
Top