[thelist] Defining Irony, the XSS way

Christian Heilmann codepo8 at gmail.com
Fri Jun 15 09:55:52 CDT 2007

> > It is a tutorial about Cross Server Scripting attacks and how to
> > prevent them. The "fail" alert is injected to the page via XSS, so the
> > page itself is not protected against the thing it explains how to
> > protect yourself against.
> um, right. obviously. so much for *my* powers of observation.
> time for another cuppa tea, methinks, or perhaps something a little
> stronger

More obvious with this one:

Chris Heilmann
Book: http://www.beginningjavascript.com
Blog: http://www.wait-till-i.com
Writing: http://icant.co.uk/

More information about the thelist mailing list