Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- Google Adsense scripting technique ????
November 15, 2005, 6:04 pm
rate this thread
Essentially , if cross browser scripting is a security breach , how
does Google implement their Adsense program by just having to paste
from your domain to theirs.
google_ad_client = "pub-05567833523111";
google_ad_width = 728;
google_ad_height = 90;
google_ad_format = "728x90_as";
google_ad_type = "text_image";
Isn't it cross domain scripting , if nothing else....and how do u think
they accomplished this on different browsers..
- Benjamin Niemann
November 16, 2005, 3:47 pm
Re: Google Adsense scripting technique ????
It can be used for security breaches, it is not a security breack per se.
It is essentially the same technique that is used by hackers for XSS
attacks. The difference is that a hacker (an untrusted party) finds a way
to insert JS code into the page without knowledge of the webmaster/document
author. The Google code on the other hand is inserted by the
webmaster/document author, after he analysed the code and considered it
harmless or simply trusts Google not to do any dirty things.
Email: pink at odahoda dot de
WWW: http://www.odahoda.de /