Dear Guru of t3h Internets, I was playing with a man-in-the-middle attack today. It uses squid to watch for any HTTP GET requests for images, rotates them 180 degrees, and then serves the modified version to the victim. I found that the results of a google image search weren't getting flipped like they had in the past. I opened up wireshark to see what was going on, and I only saw a few image requests. I looked at the page, using the inspect element feature in Google Chrome, and found a mess of javascript and HTML 5 as shown below. I'm not completely sure what the page is doing, but it looks like it's just downloading an image and loading it into a canvas once it's downloaded completely.
My questions is: Why am I not seeing individual GET requests for each image? How is it doing this? What happened to my old web, where men were men and image results were served up in a TABLE full of IMG tags? Sincerely, Perplexed in Provo <a class="rg_l" style="width:130px;height:130px;margin-top:0px;margin-left:0px" href="/imgres?imgurl=http://www.larose.com/upimages/Happy_Face_Mug.JPG&imgrefurl=http://www.larose.com/cups_and_mugs/happy_face_mug/&usg=__mgRiPyWL1cSUBuxOX9GbOisCnxk=&h=300&w=300&sz=77&hl=en&start=2&zoom=1&tbnid=8aeipBUx_8G48M:&tbnh=116&tbnw=116&prev=/images%3Fq%3Dmug%26hl%3Den%26gbv%3D2%26biw%3D1230%26bih%3D353%26addh%3D140%26output%3Dimages_json%26tbs%3Disch:1&itbs=1";><canvas id="cvs_8aeipBUx_8G48M:l" style="display:block" width="130" height="130"></canvas><img class="rg_i" id="8aeipBUx_8G48M:l" src="http://t2.gstatic.com/images?q=tbn:ANd9GcTdj0rhccFO9fS-pDMFxPsxvzFBQlRm79MsFzzCTqOEkweqyJ8&t=1&h=167&w=167&usg=__e5Qnig3hq_u8Ru4bYTOzIWbWEjM="; height="130" width="130" style="width:130px;height:130px" onload="google.isr.fillCanvas(this);"></a> -------------------- BYU Unix Users Group http://uug.byu.edu/ The opinions expressed in this message are the responsibility of their author. They are not endorsed by BYU, the BYU CS Department or BYU-UUG. ___________________________________________________________________ List Info (unsubscribe here): http://uug.byu.edu/mailman/listinfo/uug-list
![http://www.larose.com/upimages/Happy_Face_Mug.JPG&imgrefurl=http://www.larose.com/cups_and_mugs/happy_face_mug/&usg=__mgRiPyWL1cSUBuxOX9GbOisCnxk=&h=300&w=300&sz=77&hl=en&start=2&zoom=1&tbnid=8aeipBUx_8G48M:&tbnh=116&tbnw=116&prev=/images%3Fq%3Dmug%26hl%3Den%26gbv%3D2%26biw%3D1230%26bih%3D353%26addh%3D140%26output%3Dimages_json%26tbs%3Disch:1&itbs=1"](http://www.larose.com/upimages/Happy_Face_Mug.JPG&imgrefurl=http://www.larose.com/cups_and_mugs/happy_face_mug/&usg=__mgRiPyWL1cSUBuxOX9GbOisCnxk=&h=300&w=300&sz=77&hl=en&start=2&zoom=1&tbnid=8aeipBUx_8G48M:&tbnh=116&tbnw=116&prev=/images%3Fq%3Dmug%26hl%3Den%26gbv%3D2%26biw%3D1230%26bih%3D353%26addh%3D140%26output%3Dimages_json%26tbs%3Disch:1&itbs=1"){kind=link}