Skip to content
Thoughtful, detailed coverage of everything Apple for 28 years
and the TidBITS Content Network for Apple professionals

FTP Snatching

FTP Snatching — In response to our FAQtoid that mentioned how spammers might capture your email address when you visit a Web page, Peter N Lewis <[email protected]> noted a sneaky technique involving FTP:

Another way I’ve heard to snatch an email address when visiting a Web page is by coding an inline image with an FTP URL. The browser then automatically FTPs the file for you to show you the image – but when it anonymously FTPs the file, the browser typically uses your email address as the password (as anonymous FTP should – sending your email address is taken as a signature to abide by the usage guidelines). Thus an unscrupulous FTP server (or Web server using the anonymous FTP inline image) can capture your email address as well.

Subscribe today so you don’t miss any TidBITS articles!

Every week you’ll get tech tips, in-depth reviews, and insightful news analysis for discerning Apple users. For 28 years, we’ve published professional, member-supported tech journalism that makes you smarter.

Registration confirmation will be emailed to you.