On Mon, Aug 17, 2009 at 6:43 PM, FirefoxRocks <[email protected]>wrote:
> > Chrome and Windows are literally attacked by this page > > The source code can be viewed here: > > http://validator.w3.org/check?uri=http%3A%2F%2Frules.on.nimp.org%2F&charset=%28detect+automatically%29&doctype=Inline&ss=1&group=0&user-agent=W3C_Validator%2F1.654 > *** WARNING! If you do visit the below page, turn off your speakers, > save all unsaved data and exit other programs *** > http://rules.on.nimp.org/ > > It opened Windows Live Mail (I'm assuming the default mail > application), and it kept popping up a dialog box to open Telnet and > Skype among other files and programs so fast that you can not close > them. Windows Task Manager can open, but it is much too slow to kill > any processes (wlmail.exe or chrome.exe). > > This problem also occurs on Safari, but it is far worse. > > > Sadly I don't know what can be done to stop this. Most of the code is innocent by its self [changing audio tracks with an array, setting the background, displaying alert's and opening windows], but when it is combined with distasteful content and executed in such a refined matter it really is hard to stop. Sure vendors could prevent any actions such as .keyCode == 18 || .keyCode == 115, but that can be used with good intentions (preventing an accidental window close when a user is uploading a video). They could also restrict volume settings to some decibel range but I don't know how well that would work (trying to play a youtube video during a loud conference/floor show). I would think that "signatures" could be created (much like AV software does now) but that would dramatically slow page loading. I guess the only thing to do currently is mark the page/[sub.]domain as spam and block access to it. -- - Adam Shannon ( http://ashannon.us ) --~--~---------~--~----~------------~-------~--~----~ Chromium Discussion mailing list: [email protected] View archives, change email options, or unsubscribe: http://groups.google.com/group/chromium-discuss -~----------~----~----~----~------~----~------~--~---
