Skip to main content

Be careful with Ctrl+C

We do copy various data by ctrl+c for pasting elsewhere. This copied data is stored in clipboard and is accessible from the net by combination of Javascripts and ASP.

You don't trust me :) then just try the below steps:

1) Copy any text by Ctrl+c or Edit >> Copy or anyother method which you are comfortable with!

2) After that just visit this Link: http://www.friendlycanadian.com/applications/clipboard.htm

3) You will see the text you copied on the screen right there in that page.

Hope you would realise the seriousness now. The thumb rule is do not keep sensitive data (like passwords, creditcard numbers, etc.,) in the clipboard while surfing the web. It is extremely easy to extract the text stored in the clipboard to steal your sensitive information.

Its always advisable to either copy useless piece of information onto the clipboard before leaving a shared computer OR logoff / restart the machine so that clipboard content would be erased.

Comments

Anonymous said…
Thats wonderful man. At the same time, it so dangerous.

Rosi
10:10 AM, August 24, 2005
Santhi.M said…
Hi anna..Its amazing..Thanks for the information..I have to be careful as i always leave sensitive information in the clipboard..
9:05 AM, August 25, 2005
Marimuthu said…
Hi all,
We can secure our clipboard data from web scriptings :
In the security, Custom level settings choose Disable in the Allow Paste operations via script & u'll not face such problems..

Regards,
Marimuthu
12:16 PM, August 25, 2005
Vadivel said…
That work-around is for IE 5.0 users. What about users who work with other browsers or earlier versions of IE :)

That is, A work-around for users using IE 5.0, is to disable or set-to-prompt the option of "Allow paste operation via script", which is accessible through Tools >> Internet Options >> Security >> Internet >> security zone >> Custom Level >> Scripting >> Allow paste operations via script
8:01 AM, August 29, 2005
Anil said…
Good news is that IE7 fixed this issue … and it gives a nice warning for all such sites which try to access the clipboard. But that doesn’t make us fully secure as there are lots of other moles as well which can access our clipboard with/without clipboard …. May be Vineet Gupta or others can throw some light on this…
1:45 PM, August 09, 2006
Anonymous said…
Hey,

Thanks for the cool information. It will save me as an user and help has developer as well :)

Hemendra Singh Shaktawat

Mindfire Solutions
www.mindfiresolutions.com
5:09 PM, September 08, 2006
Post a Comment

Popular posts from this blog

Script table as - ALTER TO is greyed out - SQL SERVER

One of my office colleague recently asked me why we are not able to generate ALTER Table script from SSMS. If we right click on the table and choose "Script Table As"  ALTER To option would be disabled or Greyed out. Is it a bug? No it isn't a bug. ALTER To is there to be used for generating modified script of Stored Procedure, Functions, Views, Triggers etc., and NOT for Tables. For generating ALTER Table script there is an work around. Right click on the table, choose "Modify" and enter into the design mode. Make what ever changes you want to make and WITHOUT saving it right click anywhere on the top half of the window (above Column properties) and choose "Generate Change Script". Please be advised that SQL Server would drop actually create a new table with modifications, move the data from the old table into it and then drop the old table. Sounds simple but assume you have a very large table for which you want to do this! Then it woul
2 comments
Read more

AWS fatal error: An error occurred (400) when calling the HeadObject operation: Bad Request

While using AWS and trying to copy a file from a S3 bucket to my EC2 instance ended up with this error message. Command Used: aws s3 cp s3://mybucketname/myfilename.html /var/www/html/ Error: fatal error: An error occurred (400) when calling the HeadObject operation: Bad Request The error goes off if we add the region information to the command statement. I am using Asia Pacific (Mumbai) so used ap-south-1 as the region name. Modified Command: aws s3 cp s3://mybucketname/myfilename.html /var/www/html/ --region ap-south-1
Post a Comment
Read more

[Non Tech] Want to know the recipe for Omelette :)

Fed up with Bread - Jam and Curd Rice, today i wanted to eat Omelette. Interesting part is I wanted to cook it myself :) So in the first picture you see all the items which are needed for preparing an Omelette. When I had a closer look at the eggs I see that almost all the eggs are broken. But believe me when I bought it couple of days back it was in perfect condition! I was wondering whether the eggs have become rotten or pretty old to consume! I tried taking an egg and break it but couldn't break it at all :) Since I have kept in the freezer all the eggs have frozen and looked like a iron ball :) After trying for few minutes of trying i removed the shell of the egg and then kept that iron ball :) into a bowl and placed it within Oven. I heated it for 1 minute and checked. It melted only to a limit. So i just set it for another 2 minutes and checked it later. It has melted but the part of the egg white has become a Omelette :( I didn't leave it there. I took the bowl out of
8 comments
Read more