From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received-SPF: None (mailfrom) identity=mailfrom; client-ip=8.23.224.61; helo=out.smtp-auth.no-ip.com; envelope-from=kevin@carhart.net; receiver= Received: from out.smtp-auth.no-ip.com (smtp-auth.no-ip.com [8.23.224.61]) by hurricane.the-brannons.com (Postfix) with ESMTPS id 303E1779A3 for ; Tue, 9 Jan 2018 14:55:18 -0800 (PST) X-No-IP: carhart.net@noip-smtp X-Report-Spam-To: abuse@no-ip.com Received: from carhart.net (unknown [99.52.200.227]) (Authenticated sender: carhart.net@noip-smtp) by smtp-auth.no-ip.com (Postfix) with ESMTPA id 74614191 for ; Tue, 9 Jan 2018 14:58:32 -0800 (PST) Received: from carhart.net (localhost [127.0.0.1]) by carhart.net (8.13.8/8.13.8) with ESMTP id w09MwVUu023957 for ; Tue, 9 Jan 2018 14:58:31 -0800 Received: from localhost (kevin@localhost) by carhart.net (8.13.8/8.13.8/Submit) with ESMTP id w09MwV8r023948 for ; Tue, 9 Jan 2018 14:58:31 -0800 Date: Tue, 9 Jan 2018 14:58:30 -0800 (PST) From: Kevin Carhart To: edbrowse-dev@lists.the-brannons.com In-Reply-To: Message-ID: References: User-Agent: Alpine 2.03 (LRH 1266 2009-07-14) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed Subject: Re: [Edbrowse-dev] possible Referer issue X-BeenThere: edbrowse-dev@lists.the-brannons.com X-Mailman-Version: 2.1.24 Precedence: list List-Id: Edbrowse Development List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Jan 2018 22:55:19 -0000 Thanks, Chuck! Yes.. breaking down multiple factors is a problem.. not knowing which of these point of divergence is the important one. That said, I suspect the cookies, and the session-token cookie in particular. There needs to be a conversation where it is received, sent back out, and if the site gives you a new one, you send that one back in your next request. If I understand what I'm reading, this isn't happening in amazon.chuck.5 and in my failed attempts, and it does happen in amazon.wendy.5. The only references to session-token in amazon.chuck.5 are outgoing. It does not appear in any Response. I bet this is important. Of course I had a totally wrong hypothesis earlier so I could be wrong. As a side suggestion, I think we can load the login-and-password screen on first visit, and maybe save some hops and some bloat. Technically we should be able to open a new edbrowse and 'b' the login-and-password screen's URL from the getgo. I don't think we have to visit the homepage and 'g' a link first. This would make the HTTP conversations shorter. On Tue, 9 Jan 2018, Chuck Hallenbeck wrote: > Hi Kevin, > > I have amazon.wendy.5 here too, and have posted two db5 runs of my own failed > logins. I used grep to search for prepopulatedLoginID in all three files, and > found this: > > $ grep -c prepopulatedLoginId amazon* > amazon.chuck.5:0 > amazon.wendy.5:16 > $ grep -c prepopulatedLoginId signing-in.txt 1 > > > My outputs are available from www.panix.com/~chuxroom/signing-in.txt > and www.panix.com/~chuxroom/amazon.chuck.5 > > However, the file "signing-in.txt" was generated before the segfault was > detected and fixed, so the amazon.chuck.5 is probably a closer source. > > Running here on Debian Sid, edbrowse 3.7.1, curl 7.57.0. > > Chuck > > > -- > Here In Northeast Ohio also, The Moon is Waning Crescent (44% of Full) > When your only tool is a hammer, everything looks like a nail. > Sent from Sergio's iPhone. > -------- Kevin Carhart * 415 225 5306 * The Ten Ninety Nihilists