Simon Willison’s Weblog

Subscribe

Monday, 30th June 2008

Enough Already with the Connections! Comet doesn’t mean making long-lived HTTP connections (which most browsers do anyway thanks to HTTP keep-alive), it means making long-held HTTP requests. I’m guilty of spreading this misinformation in the past.

# 9:27 am / comet, connections, correction, http, keepalive, requests

The end of LugRadio. Wow. LugRadio was a podcast before the term podcast had even been coined. It will be sorely missed.

# 2:03 pm / lugradio, podcasts, stuart-langridge

Javascript protocol fuzz results. If your HTML sanitizer uses blacklisting rather than whitelisting here are a few more weird ways of injecting javascript: in to a link that you need to worry about—but you should really switch to whitelisting http:// and https:// instead.

# 3:57 pm / blacklisting, firefox, fuzztesting, html, javascript, sanitization, security, whitelisting

2008 » June

MTWTFSS
      1
2345678
9101112131415
16171819202122
23242526272829
30