2006-10-22.14:02:00.more_CSRF_fun

Over at MetaFilter I've been talking about the dangers of CSRF. A few things occurred to me during the discussion. IMG tags can be used to perform a really nasty DDoS. It turns out IE will quite happily follow a 302 redirect to port 25, or port 22, or port 53. Since smtp, ssh, and dns will fall over with at most a couple of thousand connections, this could be used for a fair bit of harm. As far as I know, the MailChannels Traffic Control product is the only thing that has a hope in hell of surviving this.

This post by Stefan Esser brought to mind some other things I was thinking about as well. Turns out mediawiki will allow you to create a URL called http://blahblah.com/crossdomain.xml. This might be a bit of a problem...