Re: NodeSelector, :visited, and :link from Brad Kemper on 2010-08-26 (www-style@w3.org from August 2010)

From: Brad Kemper <brad.kemper@gmail.com>
Date: Wed, 25 Aug 2010 22:15:22 -0700
To: Garrett Smith <dhtmlkitchen@gmail.com>
Cc: Alan Gresley <alan@css-class.com>, Boris Zbarsky <bzbarsky@mit.edu>, Patrick Garies <pgaries@fastmail.us>, www-style <www-style@w3.org>
Message-Id: <580C5AFA-0216-48CD-97C7-B1971E7D9B7F@gmail.com>

On Aug 25, 2010, at 9:25 PM, Garrett Smith <dhtmlkitchen@gmail.com> wrote:

>> This is a security issue. Servers can track a computer's personal
>> browsing history by using attribute selectors together with :visited
>> or server side scripts (for which I have little knowledge) and :visited.
>> 
>> 
> And?

And then construct a very convincing phishing attack because they know what bank you use and what products you showed interest in there.

Received on Thursday, 26 August 2010 05:16:52 UTC