A question arises. Is it necessary to give date and time in HTTP header. If it serves no useful purpose, it should be omitted since hackers can use the date and time to trigger attack sequences.
2009/04/01
Conficker checking date and time
It is known that if users try to adjust the date of Conficker infected Windows PCs to avoid triggering 1st April, it does not work. The reason is that Conficker will connect to large web sites and from the HTTP header, it knows the exact date and time.
A question arises. Is it necessary to give date and time in HTTP header. If it serves no useful purpose, it should be omitted since hackers can use the date and time to trigger attack sequences.
A question arises. Is it necessary to give date and time in HTTP header. If it serves no useful purpose, it should be omitted since hackers can use the date and time to trigger attack sequences.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment