Protecting against cross site scripting attacks

Greg's blog

Greg's lastest blog talks about how to protect your web app against JavaScript used to execute JavaScript from an unwanted domain. The blog gives specific examples of cross site scripting (XSS) hacks and the code to guard against them. Although most solutions are for clients it also touches on how to improve server side code.

Greg's previous blog on restricting access to AJAX services is quite popular and useful.

Comments:

Post a Comment:
Comments are closed for this entry.