Monday, April 02, 2007

Maybe I'm Glad I Didn't Jump Into Ajax With Both Feet

Saw this on Slashdot: Fortify (the security-source-code-analysis people) say that Ajax apps are vulnerable to an entirely new class of attack, and that the common libraries all contain the vulnerabilities. Safari isn't supporting the rich-text editor right now, so you'll have to C&P the link:
http://www.cbronline.com/article_news.asp?guid=484BC88B-630F-4E74-94E9-8D89DD0E6606

(Small-world note: The Fortify guy cited in the piece, Brian Chess, co-taught a nice class on code reviews and static analysis tools at SD West. I learned useful things there. Good on ya, mate.)

0 Comments:

Post a Comment

<< Home