Who says:
Reported remote address
89.183.23.220
Browser
MSIE v 7.0
OS
Windows XP
Referer
http://www.leader.ru/secure/
Client's address we got
89.183.23.220
Client's hostname
a89-183-23-220.net-htp.de
Preferable mail server
Not found
The page did not detect that I used a German K-Meleon 1.1.4. This code only reads out the User Agent string that is sent by default or as the spoofed User Agent. It betrays my German IP. Germans and Russians habitually visit with native speaking browsers
So something must be wrong with my User Agent String
Actually AFAIK You can devise a way to find that You are visited by a browser that is driven by a Gecko engine - but not which browser.
Go to
Gemal.dk:
This is the give-away that betrays a Gecko with activeX:
ActiveX supported No or unable to detect... (that would be a true IE)
GeckoActiveX supported Yes ( any Gecko that has activeX support / this is the first thing that occured to me - there should be others ). To be fairly save against browser spying You need to switch off JavaScript.
Go here to find out
more about Geckos at Gemal.dk:
UserAgent Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1)
Gecko Product Yes - version
Gecko 20080203
Gecko Vendor Yes - version 1.1.4
Mozilla No or unable to detect...
K-Meleon No or unable to detect...
Tells You that I did the test with an 1.1.4 but even he cannot detect K-Meleon
to tell You would have to keep a list which 1.1.4 of what browser uses that particular Gecko engine.
So You can cleverly devise tests that give away much - if not all.
p. s. Gemal.dk is my standard browser spying page.
p.p.s. It is not good to spoof IEs since they speak another JavaScript dialect then Geckos. Spoofing IE causes JavaScript problems e.g. with Yahoo.mail and other pages. Also web pages assume that You can use IE's native mechanisms especially activeX. And these are not fully supported by the Gecko-ActiveX plugin.
Edited 2 time(s). Last edit at 05/16/2008 05:33PM by guenter.