Is Bob attempting a malicious attack?
Ever since I banned Bob, not once but twice (He cam back as Fake Ken with a new IP address), my register has been filling with this:" escape(location.href) ' " I have never seen this before and I have dozens of them.
Is this a malicious attack of some kind? Does anyone know?
Doesn't he have something better to do? He should start a "Troll" blog and form a community around those types of people.
Just my 2 cents
Posted by: Dan Schawbel | January 28, 2008 at 05:54 AM
Usually that kind of code is used to create a task or create a bookmarklet of a page. It might be his way of trying to force a post, but clearly it's not working. I'll check in with a couple of folks but in the meantime I wouldn't worry about any truly malicious activity.
Posted by: Jennifer Leggio | January 28, 2008 at 06:55 AM
I agree with Jennifer...it's usually bookmarklet-type javascript code. Checking w/ security types (as she's doing) is prudent, but I'd think it's either what she suggested (a way of trying to force a post), or some wierd mal-type attack...in other words, if it could somehow be parsed by your javascript parser, something Bad Might Happen. But that generally means making a bookmarklet out of it, which I don't think you're likely to do.
Hmm...that being said, I'm no security type, so there's probably some way of exploiting it that I'm not aware of. I'd be cautious reviewing those registers in a browser w/ Javascript turned on, just in case there's something tricky going on.
Posted by: Ken Kennedy | January 28, 2008 at 07:13 AM