如何欺骗JavaScript GET请求的用户代理? [英] How can I spoof the user agent of a JavaScript GET request?

问题描述

如何欺骗JavaScript GET请求的用户代理?不允许 setRequestHeader 与User-Agent一起使用:

How can I spoof the user agent of a JavaScript GET request? setRequestHeader with User-Agent isn't allowed:

xmlHttpRequest.setRequestHeader("User-Agent", "...");

推荐答案

由于围绕它的安全问题，您不能在一个像样的浏览器中执行此操作.您不希望XSS脚本更改请求标头并在您的网站上猖ramp运行.

You can't do this in a half-decent browser because of security issues surrounding it. You don't want XSS scripts to be changing request headers and running rampant on your site.

但是我相信，如果您使用VBScript，则 IE中有一种解决方法 :

However I believe there's a workaround in IE if you use VBScript:

MyHttp.setRequestHeader "User-Agent", "MyCustomUser"

另一种选择是在您的站点上拥有一个专门用于转发GET请求的网页，并根据需要更改相应的标头.

The alternative is to have a web page on your site dedicated to forwarding a GET request, changing the appropriate headers as necessary.

这篇关于如何欺骗JavaScript GET请求的用户代理?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！