28 Sep
2012
28 Sep
'12
12:40 a.m.
Peter Ross wrote:
To be hacked is one thing - but that it targets Linux users only??
It would be clever for a spammer to inject the data only when the U-A is "hi I'm to googlebot", because then it would be far less obvious that it was compromised -- as you've seen. A naïve implementation might try to do that by blacklisting known end user UAs (i.e. IE, FF) rather than whitelisting known spider UAs, which would result in you seeing it if your UA happened to not match the blacklist.