WebApp Sec mailing list archives

blocking CSRF attacks

From: Pawan <bugzbee2 () gmail com>
Date: Tue, 11 Dec 2007 15:05:36 +0530

Hi List,
any one on the list aware of any IDS/IPS capable of blocking CSRF
attacks? 
If not, what will be the best policy to block CSRF.

Thanks in advance.


-------------------------------------------------------------------------
Sponsored by: Watchfire 
Methodologies & Tools for Web Application Security Assessment 
With the rapid rise in the number and types of security threats, web application security assessments should be 
considered a crucial phase in the development of any web application. What methodology should be followed? What tools 
can accelerate the assessment process? Download this Whitepaper today! 

https://www.watchfire.com/securearea/whitepapers.aspx?id=70170000000940F
-------------------------------------------------------------------------

Current thread:

blocking CSRF attacks Pawan (Dec 12)
- Re: blocking CSRF attacks makkalot (Dec 14)
- Re: blocking CSRF attacks Jan Heisterkamp (Dec 14)
  - Re: blocking CSRF attacks Sverre H. Huseby (Dec 15)
- Re: blocking CSRF attacks Paul Johnston (Dec 15)
  - RE: blocking CSRF attacks Boaz Shunami (Dec 19)
- <Possible follow-ups>
- Re: blocking CSRF attacks Daniel Weber (Dec 14)
- Re: FW: blocking CSRF attacks Paul Johnston (Dec 19)
  - Re: FW: blocking CSRF attacks Martin Johns (Dec 22)
  - Re: FW: blocking CSRF attacks Amit Klein (Dec 22)
  - RE: FW: blocking CSRF attacks Boaz Shunami (Dec 22)