I got to thinking about the esteemed Congresscritter from Colorado's befuddled response to her mandatory data retention law, and got amused at how easily a badly configured HTTP proxy could be fooled into registering false positives. Imagine running a script like this on someone you hate's computer, only with domains and file names that don't look absurdly fake on their face like the ones I used:
import httplibdomains = [
"www.wehostkiddyporn.com",
"www.welikeemreeeelyoung.com",
"www.misckiddypornsite.com"
]
files = [
"13yoldgangbang.jpeg",
"12suck_dick.jpeg",
"6yrold_teacher.jpeg"
]for domain in domains:
con = httplib.HTTPConnection(domain, "80")
for file in files:
con.request("GET", file)
con.close()
The scary part is that let's say that it does come up as a bunch of 404 errors, as it should. How many cops, judges and jurors are not going to believe that this script's bogus requests weren't a sincere effort to get ahold of some illegal content? Reason 53,632 why this is a dangerous bill.
Leave a comment