LSO cookies

Discuss the many weaknesses of browser security and ways to mitigate the threat

LSO cookies

Post by ampakine on Fri Sep 23, 2011 1:37 pm
([msg=61767]see LSO cookies[/msg])

I read that LSO cookies can be read by any website, not just the website that created them. Is that true? If so, what kinda information could you obtain if you were to log the LSO cookies of all the visitors to your site?
ampakine
Experienced User
Experienced User
 
Posts: 65
Joined: Tue May 31, 2011 5:21 pm
Blog: View Blog (0)


Re: LSO cookies

Post by limdis on Fri Sep 23, 2011 1:58 pm
([msg=61769]see Re: LSO cookies[/msg])

LSO cookies are primary used for Flash. They pretty much work like any other cookie but are much harder to get rid of. So with enough time (and some malicious intent) of viewing a website which incorporates flash, there is the potential that they can view which websites you have been visiting prior to your current location. It is possible to go as far as finding out where you have been shopping, what you were shopping for, what kind of pron you are into, and your social network account names, etc.

To totally avoid this kind of attack would be to completely remove flash. But that would suck... I love me some flash personally. The next thing is to make sure you delete your cookies on a regular basis. If the information is not there, the worst that could happen would be that the attacker is able to only view a list of websites that you have visited that also incorporate flash.
"The quieter you become, the more you are able to hear..."
"Drink all the booze, hack all the things."
User avatar
limdis
Moderator
Moderator
 
Posts: 1429
Joined: Mon Jun 28, 2010 5:45 pm
Blog: View Blog (0)


Re: LSO cookies

Post by tremor77 on Fri Sep 23, 2011 2:15 pm
([msg=61770]see Re: LSO cookies[/msg])

Recent updates to flash should have mended this problem with LSO.

Found an article so I'll link - why duplicate effort eh? http://www.devdaily.com/internet/flash-cookies-lso-web-browser-privacy-security-internet
Image
User avatar
tremor77
Contributor
Contributor
 
Posts: 910
Joined: Wed Mar 31, 2010 12:00 pm
Location: New York
Blog: View Blog (0)


Re: LSO cookies

Post by limdis on Fri Sep 23, 2011 2:29 pm
([msg=61772]see Re: LSO cookies[/msg])

I wasn't aware of the add-on. Good find 8-)
"The quieter you become, the more you are able to hear..."
"Drink all the booze, hack all the things."
User avatar
limdis
Moderator
Moderator
 
Posts: 1429
Joined: Mon Jun 28, 2010 5:45 pm
Blog: View Blog (0)


Re: LSO cookies

Post by ampakine on Sun Sep 25, 2011 5:59 am
([msg=61817]see Re: LSO cookies[/msg])

limdis wrote:To totally avoid this kind of attack would be to completely remove flash. But that would suck... I love me some flash personally. The next thing is to make sure you delete your cookies on a regular basis. If the information is not there, the worst that could happen would be that the attacker is able to only view a list of websites that you have visited that also incorporate flash.

Heres a firefox plugin that informs you whenever LSO cookies have been stored:
https://addons.mozilla.org/en-US/firefo ... erprivacy/
it gives you the option to delete them then and there. I just set it so it deletes them automatically.
ampakine
Experienced User
Experienced User
 
Posts: 65
Joined: Tue May 31, 2011 5:21 pm
Blog: View Blog (0)


Re: LSO cookies

Post by pertti123 on Sun Sep 25, 2011 12:43 pm
([msg=61820]see Re: LSO cookies[/msg])

Alternative way to deal with these, is to set your directory permissions to not writable.
I set flash settings the way I wanted, removed everything from ~/.macromedia and ~/.adobe, except settings.sol and path to it. Then, chmod -R 500 ~/.macromedia ~/.adobe.

For some reason, I have saved cacheSize.txt also, in ~/.adobe.

I read about this somewhere, so I don't take credit for coming up with this solution, or the destruction doing this causes.
pertti123
New User
New User
 
Posts: 13
Joined: Fri Sep 10, 2010 6:02 am
Blog: View Blog (0)


Re: LSO cookies

Post by tgoe on Tue Oct 04, 2011 12:18 am
([msg=62039]see Re: LSO cookies[/msg])

The problems with simply /dev/null'ing LSOs is that you'll have to re-authenticate with each bank you do business with and you'll lose data if you play flash games...
User avatar
tgoe
Contributor
Contributor
 
Posts: 668
Joined: Sun Sep 28, 2008 2:33 pm
Location: q3dm7
Blog: View Blog (0)



Return to Web

Who is online

Users browsing this forum: No registered users and 0 guests