The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)
Center for Education and Research in Information Assurance and Security

Shiflett on the danger of cross-domain AJAX scripting

Wednesday, August 09, 2006 by Ed Finkler
in Secure IT Practices
Share:

Chris Shiflett has posted a good piece in his blog on the potential danger of cross-domain AJAX scripting (digg here).  When Chris and I discussed this at OSCON, I was pretty surprised that anyone would think that violating the same-origin restrictions was in any way a good idea.  His post gives a good example of how dangerous this would be.

Tags for this post:

Leave a comment (1 so far) »

Comments

Posted by Chris Shiflett
on Sunday, September 24, 2006 at 01:35 PM

Thanks for the link. grin

Now there’s more to the story:

http://shiflett.org/archive/263

Leave a comment

Commenting is not available in this section entry.

Previous entry »

« Next entry