Re: tlug: Cookies and Netscape

[Fredric Fredricson <Fredric.Fredriksson@example.com>]

"Stephen J. Turnbull" wrote:
> 
>[snip]
> Second, the DNS is not utterly reliable.
> 
> Third, a malicious CGI can embed your cookies in an URI to another
> site, thus propagating them.
> 
>     Fredric> Given this I feel that cookies have actually been the
>     Fredric> target for a massive FUD campaign. I can not really see
>     Fredric> what harm they can cause.
> 
> User information (such as client host and any registration information
> that may be provided) can be correlated with click trails.  This can
> be assembled in a file and sold, eg.  Then a new cookie is generated,
> generating more information.  I can imagine related retail sites doing
> this, for example, on a quid pro quo basis.
> 
> I can think of a lot of situations where I would find having those
> trails correlated in one place embarrassing, and analogous situations
> where they might be harmful.
> 
Ah, yes cookies can be used to compromise your integrity on the 
internet but there are tons of other ways to do so. Like fake DNS
replies and creative use of CGIs etc.
And I would believe that most ISPs and almost all companies keep a 
complete record (for a while) of all activities on their internet
connection (if they don't they have no way to counter attacks on
their security).

My point is that cookies is not _THE_ threat to your personal integrity
that you face when you surf the internet but just one of many. It all
boils down to personal preferences, of course, but to me cookies are
more useful than harmful, but this may be just me.....

/Fredric
-------------------------------------------------------------------
Next Technical Meeting: August 14 (Sat), 13:00  place: Temple Univ.
*** Special guest: Marc Christensen (Salt Lake Linux Users Group)
Next Nomikai: September 20 (Fri), 19:30 Tengu TokyoEkiMae 03-3275-3691
-------------------------------------------------------------------
more info: http://www.tlug.gr.jp        Sponsor: Global Online Japan