Hacker News new | past | comments | ask | show | jobs | submit login

Does anyone have a sample User Agent? I'd be very curious if anyone has tried doing some regex's on some request logs to see if they got any page hits from North Korea :)



It's right there in the article:

Mozilla/5.0 (X11; U; Linux i686; ko-KP; rv: 19.1br) Gecko/20130508 Fedora/1.9.1-2.5.rs3.0 NaenaraBrowser/3.5b4


There are the IP's from North Korea available as well, it was discussed couple of time ago on HN[0]. I think checking by IP is more reliable than checking the browser: Red Star OS is not the only OS in North Korea and someone could use Naenara Browser from the outside as well...

[0] https://news.ycombinator.com/item?id=8777226


Notice that the user agent string gets rewritten to something innocuous in HTTP headers but not JS. So sniff client-side through JS.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: