1023

submitted 2 years ago by Maven@lemmy.zip to c/programmer_humor@programming.dev

76 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] tedvdb@feddit.nl 35 points 2 years ago

Yes, e.g. outlook replaces links in mails so they can scan the site first. Also some virusscanners offer nail protection, checking the site that's linked to first, before allowing the mail to end up in the user's mail client.

Thats why you never take actions on a GET request, but require a form with button for the user to do a POST.

[-] TrumpetX@programming.dev 11 points 2 years ago

It can be worse, we had to add a captcha for those link scanners cause they'd submit the forms and invalidate tokens too:(

[-] jaybone@lemmy.world 4 points 2 years ago

Wow. That sounds terrible. Good to know.

[-] dan@upvote.au 2 points 2 years ago

e.g. outlook replaces links in mails so they can scan the site first. Also some virusscanners offer nail protection, checking the site that’s linked to first, before allowing the mail to end up in the user’s mail client.

Proofpoint does this too, but AFAIK they all just change the link rather than go to it. The link is checked when the user actually clicks on it. Makes sense to do it on-demand because the contents of the link can change between when the email is received and when the user actually clicks it.

this post was submitted on 12 Aug 2024

1023 points (99.5% liked)

Programmer Humor

29565 readers

1721 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

Keep content in english
No advertisements
Posts must be related to programming or programmer topics

founded 2 years ago

MODERATORS

Feyter@programming.dev

anzo@programming.dev

BurningTurtle@programming.dev

pylapp@programming.dev