[SURBL-Discuss] tips how to make a safe redirector

Chris Velazquez webupdate at gmail.com
Thu Mar 24 03:20:19 CET 2005


On Wed, 23 Mar 2005 14:41:13 -0800, Devin Carraway <surbl-box at devin.com> wrote:
> On Wed, Mar 23, 2005 at 11:30:57PM +0100, Alain wrote:
> > After seen the various msg's about open redirect's, I did a search
> > about "safe" http redirectors, but didn't find many resources.
> >
> > While it's not that difficult to make a safe one with a manual
> > whitelist, it's not in all scripts (.asp,.pl,php) easy to make a
> > script that uses SURBL to block spammers.  Such a script would have
> > the big advantage that it could be generic.  Are there available on
> > the net?
> 

If you wrote the redirecting web so it uses JavaScript to do the
redirect, instead of <a href...>, that would be safer, because most
mail clients don't allow JavaScript execution in a message.


Chris - webupdate->gmail.com


More information about the Discuss mailing list