This attack also relies on the user clicking a malicious link ... so presumably this won't work if you start with a clean browser session, or even a new tab? -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.habari.co.tz/pipermail/linux/attachments/20130807/73053e65/attachment.html>