On 09/10/2010 07:51 PM, Topher Fischer wrote: > Dear Guru of t3h Internets, > > I was playing with a man-in-the-middle attack today. It uses squid to > watch for any HTTP GET requests for images, rotates them 180 degrees, > and then serves the modified version to the victim. I found that the > results of a google image search weren't getting flipped like they had > in the past. I opened up wireshark to see what was going on, and I only > saw a few image requests. I looked at the page, using the inspect > element feature in Google Chrome, and found a mess of javascript and > HTML 5 as shown below. I'm not completely sure what the page is doing, > but it looks like it's just downloading an image and loading it into a > canvas once it's downloaded completely. > > My questions is: Why am I not seeing individual GET requests for each > image? How is it doing this? What happened to my old web, where men > were men and image results were served up in a TABLE full of IMG tags? > > > Sincerely, > > Perplexed in Provo
My roomie (Mr. Todd) showed me that some of the images are being sent in the original html document (embedded in base64), and then placed appropriately via javascript. I could only find some of the images, so it looks like further results could be sent via some ajaxy method that I don't understand (I'm not a web guy). Curse Google for restricting my prank playing abilities! --Topher -------------------- BYU Unix Users Group http://uug.byu.edu/ The opinions expressed in this message are the responsibility of their author. They are not endorsed by BYU, the BYU CS Department or BYU-UUG. ___________________________________________________________________ List Info (unsubscribe here): http://uug.byu.edu/mailman/listinfo/uug-list
