[WEB SECURITY] tying sessions to IP addresses

Brian Eaton eaton.lists at gmail.com
Mon Jun 12 13:02:00 EDT 2006


On 6/12/06, Jeremiah Grossman <jeremiah at whitehatsec.com> wrote:
> The XHR functionality for sending TRACE requests in recent versions
> of Firefox/Mozilla has been disable.

Now if they'll just get around to implementing HttpOnly...

----------------------------------------------------------------------------
The Web Security Mailing List
http://www.webappsec.org/lists/websecurity/

The Web Security Mailing List Archives
http://www.webappsec.org/lists/websecurity/archive/



More information about the websecurity mailing list