The Web Security Mailing List (2009 September)

• Thread Index

• Re: [WEB SECURITY] Cross-Site Scripting attacks via redirectors
  • From: MustLive
• [WEB SECURITY] What's the Deal with www.modsecurity.org?
  • From: David Alanis
• Re: [WEB SECURITY] What's the Deal with www.modsecurity.org?
  • From: Ryan Barnett
• Re: [WEB SECURITY] What's the Deal with www.modsecurity.org?
  • From: moto kawasaki
• [WEB SECURITY] Securing password between webserver & appserver
  • From: Chintan Oza
• Re: [WEB SECURITY] Securing password between webserver & appserver
  • From: Michael Condon
• Re: [WEB SECURITY] Securing password between webserver & appserver
  • From: Mostafa Siraj
• Re: [WEB SECURITY] Securing password between webserver & appserver
  • From: Schmidt, Chris
• Re: [WEB SECURITY] What's the Deal with www.modsecurity.org?
  • From: Martin Rublik
• Re: [WEB SECURITY] Securing password between webserver & appserver
  • From: Chintan Oza
• Re: [WEB SECURITY] Securing password between webserver & appserver
  • From: fabio . e . cerullo
• Re: [WEB SECURITY] Securing password between webserver & appserver
  • From: Mostafa Siraj
• Re: [WEB SECURITY] Securing password between webserver & appserver
  • From: Matthew Zimmerman
• [WEB SECURITY] Web 2.0 support group
  • From: Steven M. Christey
• Re: [WEB SECURITY] Web 2.0 support group
  • From: Rafal M. Los
• [WEB SECURITY] Regular Expression Denial of Service
  • From: Alex Roichman
• [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Updates
  • From: Ryan Barnett
• [WEB SECURITY] Mapping Threat Assessment Report to risk level of application
  • From: sutapa dey
• RE: [WEB SECURITY] Mapping Threat Assessment Report to risk level of application
  • From: Schmidt, Chris
• Re: [WEB SECURITY] Mapping Threat Assessment Report to risk level of application
  • From: Tan Bernard
• Re: [WEB SECURITY] Mapping Threat Assessment Report to risk level of application
  • From: sutapa dey
• [WEB SECURITY] Redirectors: the phantom menace
  • From: MustLive
• [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Ryan Barnett
• Re: [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Randy Witlicki
• RE: [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Schmidt, Chris
• [WEB SECURITY] FBController - (Facebook Control Utility) version 2.0
  • From: QUAKER DOOMER
• Re: [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Jeremiah Grossman
• RE: [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Schmidt, Chris
• Re: [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Jeremiah Grossman
• Re: [WEB SECURITY] FBController - (Facebook Control Utility) version 2.0
  • From: Eric Rachner
• Re: [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Bil Corry
• Re: [WEB SECURITY] FBController - (Facebook Control Utility) version 2.0
  • From: QUAKER DOOMER
• Re: [WEB SECURITY] FBController - (Facebook Control Utility) version 2.0
  • From: Mario D
• [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: bijeesh p
• Re: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: Akash
• RE: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: PortSwigger
• Re: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: bijeesh p
• Re: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: Mostafa Siraj
• RE: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: Mangiarelli, Jerry
• RE: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: Lam, Katherine
• Re: [WEB SECURITY] How to Perform Security Testing on Flash
  • From: bugtraq
• RE: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: Hoffman, Billy
• Re: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: Ory Segal
• [WEB SECURITY] Analysis of an unknown malicious JavaScript using steganography in JavaScript
  • From: Erwin Geirnaert
• [WEB SECURITY] RE: Analysis of an unknown malicious JavaScript using steganography in JavaScript
  • From: Hoffman, Billy
• Re: [WEB SECURITY] WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Andy Steingruebl
• [WEB SECURITY] Re: WASC Distributed Open Proxy Honeypot Project Update - Distributed Brute Force Attacks Against Yahoo
  • From: Ryan Barnett
• [WEB SECURITY] RE: Analysis of an unknown malicious JavaScript using steganography in JavaScript
  • From: Erwin Geirnaert
• [WEB SECURITY] Complex CaptCha Solutions
  • From: YGN Ethical Hacker Group
• Re: [WEB SECURITY] Complex CaptCha Solutions
  • From: Colin Watson
• RE: [WEB SECURITY] Complex CaptCha Solutions
  • From: White, Dain P
• [WEB SECURITY] WAF "Weakening": Has anyone else witnessed this or has this already been discussed?
  • From: Neil Matatall
• RE: [WEB SECURITY] Complex CaptCha Solutions
  • From: Gopal Arabally
• RE: [WEB SECURITY] WAF "Weakening": Has anyone else witnessed this or has this already been discussed?
  • From: Schmidt, Chris
• Re: [WEB SECURITY] Complex CaptCha Solutions
  • From: Anurag Agarwal
• RE: [WEB SECURITY] WAF "Weakening": Has anyone else witnessed this or has this already been discussed?
  • From: Matt Tesauro
• Re: [WEB SECURITY] How to Perform Security Testing on Flash application
  • From: Kåre Presttun
• RE: [WEB SECURITY] WAF "Weakening": Has anyone else witnessed this or has this already been discussed?
  • From: Sylvain Gil
• Re: [WEB SECURITY] WAF "Weakening": Has anyone else witnessed this or has this already been discussed?
  • From: Neil Matatall
• RE: [WEB SECURITY] WAF "Weakening": Has anyone else witnessed this or has this already been discussed?
  • From: Sylvain Gil
• [WEB SECURITY] fyi: Strict Transport Security (STS) specification
  • From: =JeffH
• [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Dorothy Leibowitz
• Re: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Mostafa Siraj
• Re: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Prasad Shenoy
• RE: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Chris Weber
• Re: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Mike Duncan
• RE: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Matt Parsons
• Re: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Mat Caughron
• [WEB SECURITY] Redirectors: the phantom menace
  • From: MustLive
• RE: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Menerick, John
• RE: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Matt Parsons
• Re: [WEB SECURITY] Looking for feedback from companies that use static analysis security tools
  • From: Nitin Vindhara