Educause Security Discussion mailing list archives
Re: Firesheep/Cain& Able
From: Valdis Kletnieks <Valdis.Kletnieks () VT EDU>
Date: Mon, 1 Nov 2010 14:23:24 -0400
On Mon, 01 Nov 2010 09:39:09 PDT, Isac Balder said:
Inform and educate users of sites that allow CSRF, XSS, etc.
"Dear Users: Most websites, including a lot that you'd expect better from, are vulnerable to CSRF and XSS attacks. Be careful out there..." Remember - "Web 2.0" isn't all that far from an *intentional* XSS attack. :) Given that, I wonder what sane and useful advice you could actually give users.
Attachment:
_bin
Description:
Current thread:
- Firesheep/Cain& Able Hudson, Edward (Nov 01)
- Re: Firesheep/Cain& Able SCHALIP, MICHAEL (Nov 01)
- Re: Firesheep/Cain& Able Michael Horne (Nov 01)
- Re: Firesheep/Cain& Able Isac Balder (Nov 01)
- Re: Firesheep/Cain& Able Valdis Kletnieks (Nov 01)
- Re: Firesheep/Cain& Able David Gillett (Nov 03)
- Re: Firesheep/Cain& Able Foerst, Daniel P. (Nov 02)
- Re: Firesheep/Cain& Able Webb, Justin (Nov 02)
- Re: Firesheep/Cain& Able Greg Williams (Nov 02)
- Re: Firesheep/Cain& Able Alex Keller (Nov 02)
- Re: Firesheep/Cain& Able Valdis Kletnieks (Nov 01)
- <Possible follow-ups>
- Re: Firesheep/Cain& Able John Ladwig (Nov 01)
- Re: Firesheep/Cain& Able John Ladwig (Nov 02)
- Re: Firesheep/Cain& Able Matt Giannetto (Nov 03)