OT: "A Blueprint to Stop Browser Attacks" [technologyreview.com "via" acm TechNews]

Stephen cryptworks at gmail.com
Fri May 15 13:39:31 MST 2009


just because one is paranoid does not mean they are not out to get you :-)

On Fri, May 15, 2009 at 1:38 PM, James Mcphee <jmcphe at gmail.com> wrote:
> Vigilant, but not paranoid.  XSS exists for a reason.  A better solution
> IMHO would be to require the remote content to be signed by a particular
> source or something along those lines.  Just my 2 cents.
>
> On Fri, May 15, 2009 at 1:30 PM, Stephen <cryptworks at gmail.com> wrote:
>>
>> given Lisa's previous rants I'm thinking both, and she would be right.
>>
>> it is in everyone's best interest to be vigilant.
>>
>> On Fri, May 15, 2009 at 12:56 PM, Alex Dean <alex at crackpot.org> wrote:
>> >
>> > On May 15, 2009, at 12:34 PM, Lisa Kachold wrote:
>> >
>> >> it's IMPORTANT to realize that WE ALL MUST BE SECURITY EXPERTS
>> >
>> > Who is 'we'?  Programmers/admins/hackers, or the general public?


-- 
A mouse trap, placed on top of your alarm clock, will prevent you from
rolling over and going back to sleep after you hit the snooze button.

Stephen


More information about the PLUG-discuss mailing list