Announcement: The Cross-site Request Forgery FAQ

To:	pen-test@securityfocus.com
Subject:	Announcement: The Cross-site Request Forgery FAQ
From:	bugtraq@cgisecurity.net
Date:	Tue, 16 Jan 2007 11:55:31 -0500 (EST)
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
Resent-date:	Tue, 16 Jan 2007 21:29:04 -0700 (MST)
Resent-from:	pen-test-return-1078483403@securityfocus.com
Resent-message-id:	<20070117042904.BAC9514837D@outgoing2.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com

 The Cross-site Request Forgery FAQ has been released to address some of the 
common 
 questions and misconceptions regarding this commonly misunderstood web flaw.   
  
 URL: The Cross-site Request Forgery FAQ 
 http://www.cgisecurity.com/articles/csrf-faq.shtml 
  
  
 Regards, 
  
 - Robert 
 admin_@_cgisecurity_com 
 http://www.cgisecurity.com/ 
 http://www.qasec.com/ 
 http://www.webappsec.org/ 
 



------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------

<Prev in Thread]	Current Thread	[Next in Thread>
Announcement: The Cross-site Request Forgery FAQ, bugtraq <= Magic Quotes question, DokFLeed Re: Magic Quotes question, Lynx Re: Magic Quotes question, Sir Mordred Re: Magic Quotes question, Ronald Chmara Re: Magic Quotes question, Justin Ferguson Re: Magic Quotes question, Tim Re: Magic Quotes question, Sanjay R Wikto and googling, Nicolás F . Iglesias Re: Wikto and googling, Adviser Re: Wikto and googling, Sels, Roger

Previous by Date:	Re: Community Rainbow Tables downloading, Richard Thomas
Next by Date:	Re: Lab setup for security learning, Steven Nixon
Previous by Thread:	Pen-Test requirements, bigsteff_itsec
Next by Thread:	Magic Quotes question, DokFLeed
Indexes:	[Date] [Thread] [Top] [All Lists]