[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] Please review: XSS Defense HOWTO

From: "Ivan Ristic" <ivan.ristic@xxxxxxxxx>
Subject: [WEB SECURITY] Please review: XSS Defense HOWTO
Date: Mon, 14 Jul 2008 12:34:11 +0100

I was looking for a complete and concise guide to writing code secure
against XSS, and when I couldn't find one I decided to write it
myself. It was a spur of the moment thing and is available on the
ModSecurity Blog:

http://blog.modsecurity.org/2008/07/do-you-know-how.html

I want to make sure all the angles are covered. Did I miss anything?

I am aware there's plenty of room for additional detail, but I'd like
to keep the blog post almost as a check list.

-- 
Ivan Ristic

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/archive/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA

Follow-Ups:
- Re: [WEB SECURITY] Please review: XSS Defense HOWTO
  - From: Andy Steingruebl

Prev by Date: RE: [WEB SECURITY] Re: Comparisons of Web ApplicationFirewalls
Next by Date: Re: [WEB SECURITY] Re: Comparisons of Web ApplicationFirewalls
Previous by thread: [WEB SECURITY] what are the rules for SSNs?
Next by thread: Re: [WEB SECURITY] Please review: XSS Defense HOWTO
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site