[langsec-discuss] WYSINWYG - a (mostly) langsec vulnerability category
will.sargent at gmail.com
Tue Dec 2 19:17:03 UTC 2014
Long been a fan, although it's very browser specific:
The mitigation chapter of Web Application Obfuscation is also good:
On Tuesday, December 2, 2014 at 11:11 AM, travis+ml-langsec at subspacefield.org wrote:
> On Tue, Dec 02, 2014 at 10:01:09AM -0800, travis+ml-langsec at subspacefield.org (mailto:travis+ml-langsec at subspacefield.org) wrote:
> > then we got
> > into the game of browsers trying to correct web design flaws, and now
> > we're in the situation where the standards are ambiguous and there are
> > multiple, incompatible parsers for (for example) rendering web
> > content.
> On that subject check out this spectacular book:
> I was literally amazed every few pages.
> Split a packed field and I am there; parse a line of text and you will find me.
> langsec-discuss mailing list
> langsec-discuss at mail.langsec.org (mailto:langsec-discuss at mail.langsec.org)
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the langsec-discuss