[langsec-discuss] Harmful Consequences of Postel's Maxim
hanno at hboeck.de
Mon Jul 6 18:40:28 UTC 2015
On Mon, 6 Jul 2015 11:32:26 -0700
Derick Winkworth <ccie15672 at gmail.com> wrote:
> Note section 6.
Related to Postel's Law: Antoine Delignat-Lavaud had a talk on last
year's black hat where he also statet that "Liberal in what you accept"
is the wrong approach and he has very practical examples how this can
lead to security vulns ("Cookie Clutter"). He recommends that malformed
inputs should be rejected in general:
When I watched that talk I wasn't aware that this was already a statet
goal of langsec.
mail/jabber: hanno at hboeck.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 819 bytes
Desc: OpenPGP digital signature
More information about the langsec-discuss