[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [WEB SECURITY] Seeking feedback on proposed security restriction in the browsers

From: "Brian Eaton" <eaton.lists@xxxxxxxxx>
Subject: Re: [WEB SECURITY] Seeking feedback on proposed security restriction in the browsers
Date: Fri, 10 Aug 2007 17:16:02 -0700

On 8/10/07, Anurag Agarwal <anurag.agarwal@xxxxxxxxx> wrote:
> The browser should check with the webserver which domains it can interact
> with (load files from or submit post data to, etc) for that website. How the
> check is implemented is upto the browser.

Please implement this!

Here are a few other ideas along the same lines:

http://www.webappsec.org/lists/websecurity/archive/2006-06/msg00070.html
http://www.modsecurity.org/blog/archives/2006/06/secure_browsing.html
http://taossa.com/index.php/2007/02/17/same-origin-proposal/

Cheers,
Brian

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

References:
- [WEB SECURITY] Seeking feedback on proposed security restriction in the browsers
  - From: Anurag Agarwal

Prev by Date: [WEB SECURITY] Rough Cut of To-Be-Published Ajax Security
Next by Date: Re: [WEB SECURITY] Seeking feedback on proposed security restriction in the browsers
Previous by thread: Re: [WEB SECURITY] Seeking feedback on proposed security restriction in the browsers
Next by thread: Re: [WEB SECURITY] Seeking feedback on proposed security restriction in the browsers
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site