[Rails-core] XSS prevention with Rails
Dave Teare
devlists-rails-core at devlists.com
Fri Feb 10 18:48:10 GMT 2006
Has there been any progress on this? I have an OWASP compliance review
@ my day job and would like something like this to point to.
Thanks!
On Monday, January 09, 2006, at 8:56 PM, Florian Weber wrote:
>> Have a look at TextHelper#sanitize and go from there.
>> http://ha.ckers.org/xss.html has a good list of things to guard for.
>> It would be cool to turn that site into a test case and work until we
>> pass 'em all.
>
>Yep, that's exactly what I had in mind too =)
>_______________________________________________
>Rails-core mailing list
>Rails-core at lists.rubyonrails.org
>http://lists.rubyonrails.org/mailman/listinfo/rails-core
Cheers!
--Dave.
--
Posted with http://DevLists.com. Sign up and save your time!
More information about the Rails-core
mailing list