Re: Another Method to Block Java Hijinks

2007-04-13 Thread scar
norvid @ 2007/04/05 17:18: On 4/5/07, James Muir [EMAIL PROTECTED] wrote: norvid wrote: On 4/5/07, James Muir [EMAIL PROTECTED] wrote: norvid wrote: snip I've heard that properly configuring a firewall can be tricky. In any case, using a firewall still doesn't protect from Java

Re: Another Method to Block Java Hijinks

2007-04-13 Thread norvid
On 4/13/07, scar [EMAIL PROTECTED] wrote: i think what we are trying to say here, is: even though this configuration may prevent java from determining the user's IP, it does not prevent java from determining other personal information. this information may include: the local time of the

Re: Another Method to Block Java Hijinks

2007-04-13 Thread Kyle Williams
On 4/12/07, scar [EMAIL PROTECTED] wrote: norvid @ 2007/04/05 17:18: On 4/5/07, James Muir [EMAIL PROTECTED] wrote: norvid wrote: On 4/5/07, James Muir [EMAIL PROTECTED] wrote: norvid wrote: snip I've heard that properly configuring a firewall can be tricky. In any case, using

Re: Another Method to Block Java Hijinks

2007-04-09 Thread Roger Dingledine
On Mon, Apr 09, 2007 at 01:07:07PM -0700, Ben Wilhelm wrote: Roger Dingledine wrote: Kyle: this would be more useful if it didn't depend on a non-free vm player. Do any of the free software variants of VMWare actually work well enough for this approach? [snip] VMWare Player ought to be

Re: Another Method to Block Java Hijinks

2007-04-06 Thread Kyle Williams
ON. We also tested the Metasploit Project's Decloaking Engine. It failed too. Regards, ~Kyle On 4/2/07, norvid [EMAIL PROTECTED] wrote: Hello I have another method that may block Java hijinks that can allow a site to determine your real IP. This one allows you to use the normal default

Re: Another Method to Block Java Hijinks

2007-04-05 Thread James Muir
norvid wrote: Hello I have another method that may block Java hijinks that can allow a site to determine your real IP. This one allows you to use the normal default browser settings. You do not have to turn off all sorts of scripts. You probably should still block cookies. Use a firewall

Re: Another Method to Block Java Hijinks

2007-04-05 Thread norvid
On 4/5/07, James Muir [EMAIL PROTECTED] wrote: norvid wrote: snip I've heard that properly configuring a firewall can be tricky. In any case, using a firewall still doesn't protect from Java applets reading identifying information locally and sending it back through the anonymous

Re: Another Method to Block Java Hijinks

2007-04-05 Thread norvid
On 4/5/07, James Muir [EMAIL PROTECTED] wrote: norvid wrote: On 4/5/07, James Muir [EMAIL PROTECTED] wrote: norvid wrote: snip I've heard that properly configuring a firewall can be tricky. In any case, using a firewall still doesn't protect from Java applets reading identifying

Another Method to Block Java Hijinks

2007-04-02 Thread norvid
Hello I have another method that may block Java hijinks that can allow a site to determine your real IP. This one allows you to use the normal default browser settings. You do not have to turn off all sorts of scripts. You probably should still block cookies. Use a firewall with settings