blogs.msdn.com/brianjo

Brian Johnson's Startup Developer Blog

Anil John on ASP.NET and XSS

Anil John on ASP.NET and XSS

  • Comments 3

Anil John posted some observations about cross-site scripting attacks and the mitigations offered by ASP.NET 1.1.

Matt Lyons did an XSS demo explaining some of this at the 2003 PDC Security Symposium. His demo is in the middle session: SECSYM2 - Security Symposium: Putting Security Theory Into Practice: Processes and Policies. Check it out here. You need to navigate through the Symposia heading.

Update: I really messed up the attribution on this. Anil was linking to an entry by Julie Lerman.

Comments
  • Actually, Julie posted the above. I just expanded on it :-)
  • Oh, sorry about that. I've updated the posting.

    Cheers,

    Brian
Page 1 of 1 (3 items)