 |
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU |
|
Home
| Calendar
| Mail Lists
| List Archives
| Desktop SIG
| Hardware Hacking SIG
Wiki | Flickr | PicasaWeb | Video | Maps & Directions | Installfests | Keysignings Linux Cafe | Meeting Notes | Linux Links | Bling | About BLU |
On Sat, Jun 28, 2008 at 11:55:42AM -0400, Kristian Erik Hermansen wrote: > On Sat, Jun 28, 2008 at 6:15 AM, Scott R. Ehrlich <[hidden email]> wrote: > > I ask because some web sites refuse to accept a connection from a > > non-Windows source, and wine has the ability to fool. > > I question your analysis that web servers are able to discriminate > your OS. A trick known for a while, but detailed in Michal Zalewski's > book Silence on the Wire, is to analyze the browser object requests > temporaly. You can fingerprint the remote browser using this method > even if the user thinks he is savvy and alters the AGENT headers. > Combine that with TCP Timestamps, and yes, you can fairly well > determine he OS. But I don't know of any commercial websites that > would do this...
