Client browser add-on detection
I know that a web server can detect the type of browser that is being used. Can a web server detect add-ons that are used by those browsers? If so, how?
|
Quote:
I believe it depends on the browser's design, but someone please correct me if I'm wrong. It's definitely not something to be taken lightly, as in most cases it would be considered a security vulnerability (information disclosure) IMHO. IIRC Firefox has been affected by this issue in the past, and it was consequently patched due to the security implications. So, unless a browser specifically provides this as a feature, you'd need to exploit it in order to get your hands on this information. And in that case, a discussion regarding a "how" would not be compatible with the LQ Rules. This is just something I would like our members to keep in mind when replying to your question. As far as a legit way to do it, I think you could probably create a Firefox extension which does this. Users could then install it at their own risk if they so wish. Of course, the extension developer would need to document the method which the server would need to use to query the browser for the details. |
Client (Browser) info.
Quote:
I am curious though, how does the web server know what browser is being used? I guess it's sent in the connection messages. I guess it's these five things (IP Address, remote port, browser cookie, browser name, browser licensee); http://www.red-squirrel.com/cgi-bin/env.cgi |
Quote:
Quote:
|
All times are GMT -5. The time now is 08:02 AM. |