Techno-News Blog Ray Schroeder, editor, OTEL - University of Illinois at Springfield |
|
|
Technology News for Higher Education Times and Dates Coordinated Universal Time
Subscribe to Techno-News Blog by Email
|
Thursday, July 02, 2009
Firefox Aims to Unplug Scripting Attacks - Robert Lemos, Technology Review
Sites that rely on user-created content can unwittingly be employed to attack their own users via JavaScript and other common forms of Web code. This security issue, known as cross-site scripting (XSS), can, for example, allow an attacker to access a victim's account and steal personal data. Now the makers of the Firefox Web browser plan to adopt a strategy to help block the attacks. The technology, called Content Security Policy (CSP), will let a website's owner specify what Internet domains are allowed to host the scripts that run on its pages.
Comments:
Post a Comment
|
