On 13 Sep 2006 [EMAIL PROTECTED] wrote: > the other way round - it is very easy to create a php that offers > an exe for download.... So jut scoring direct .exe links might > cause the bad guys to produce "better" download links
True. As I said in an earlier post, scoring on bare executable URIs is a low-hanging-fruit test. Past that we stray into the realm of trying to analyze the URI vs. the displayed link text to see if it looks like it is an attempt to mask a hostile URI with a superficially trustworthy URI. Which has been discussed here before. -- John Hardin KA7OHZ ICQ#15735746 http://www.impsec.org/~jhardin/ [EMAIL PROTECTED] FALaholic #11174 pgpk -a [EMAIL PROTECTED] key: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79 ----------------------------------------------------------------------- The difference is that Unix has had thirty years of technical types demanding basic functionality of it. And the Macintosh has had fifteen years of interface fascist users shaping its progress. Windows has the hairpin turns of the Microsoft marketing machine and that's all. -- Red Drag Diva ----------------------------------------------------------------------- 4 days until The 219th anniversary of the signing of the U.S. Constitution
