Wait, how does that work? Looking at the malicious javascript code issuing ajax ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

jpatte on March 31, 2015 | parent | context | favorite | on: China's Man-On-the-Side Attack on GitHub

Wait, how does that work? Looking at the malicious javascript code issuing ajax requests to github, it doen't seem github's response is evaluated. Is this alert even displayed?

If that is the case, why not do something even more radical in the response like changing the targeted urls ? They could replace them by baidu urls for example, effectively transforming a DDoS against github into a DDoS against baidu (not saying baidu is the author of the attack here, but that would certainly have an impact on the traffic being monitored by the GFW).

lol768 on March 31, 2015 [–]

The dataType is set to "script" in the AJAX request options. Per the jQuery docs (https://api.jquery.com/jquery.ajax/#jQuery-ajax-settings), this dataType causes the response to be evaluated as JavaScript in the browser.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact