[langsec-discuss] WYSINWYG - a (mostly) langsec vulnerability category

travis+ml-langsec at subspacefield.org travis+ml-langsec at subspacefield.org
Tue Dec 2 19:11:15 UTC 2014


On Tue, Dec 02, 2014 at 10:01:09AM -0800, travis+ml-langsec at subspacefield.org wrote:
> then we got
> into the game of browsers trying to correct web design flaws, and now
> we're in the situation where the standards are ambiguous and there are
> multiple, incompatible parsers for (for example) rendering web
> content.

On that subject check out this spectacular book:
http://lcamtuf.coredump.cx/tangled/

I was literally amazed every few pages.
-- 
http://www.subspacefield.org/~travis/
Split a packed field and I am there; parse a line of text and you will find me.






-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 834 bytes
Desc: not available
URL: <https://mail.langsec.org/pipermail/langsec-discuss/attachments/20141202/7850b110/attachment.sig>


More information about the langsec-discuss mailing list