Busting frame busting: a study of clickjacking vulnerabilities at popular sites (via) Fascinating and highly readable security paper from the Stanford Web Security Research group. Clickjacking can be mitigated using framebusting techniques, but it turns out that almost all of those techniques can be broken in various ways. Fun examples include double-nesting iframes so that the framebusting script overwrites the top-level frame rather than the whole window, and a devious attack against the IE and Chrome XSS filters which tricks them in to deleting the framebusting JavaScript by reflecting portions of it in the framed page’s URL. The authors suggest a new framebusting snippet that should be more effective, but sadly it relies on blanking out the whole page in CSS and making it visible again in JavaScript, making it inaccessible to browsers with JavaScript disabled.
Sign in with 
OpenID
How could any of this be betetr stated? It couldn't.
Vyolet - 23rd September 2011 21:34 - #
Every one understands that life seems to be very expensive, but people require cash for different stuff and not every one gets big sums cash. Thus to get quick loans or credit loan will be a correct way out.
loan - 27th October 2011 17:31 - #
ugg pas cher - 29th October 2011 02:38 - #
Thus to get quick loans or credit loan will be a correct way out.
Financial Planner MD - 6th November 2011 12:27 - #