Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



WebApp Sec: Re: Firefox, Netcraft Toolbar, and FlashBlock

Re: Firefox, Netcraft Toolbar, and FlashBlock

From: Pilon Mntry <pilonmntry_at_yahoo.com>
Date: Thu, 16 Feb 2006 22:41:00 -0800 (PST)

 Hi Saqib,
For Firefox, you may also mention about the automatic
and quick patch process.
I don't know whether you are supposed to write about
the disadvantages or not, but if you do, you may also
mention about the single process architecture of
(enabling different TABs sharing cookies), which may
lead to session hijackings...

-pilon

--- Saqib Ali <docbook.xml_at_gmail.com> wrote:

> Hello All,
>
> I am writing a small article for
> FreeSoftwareMagazine to discuss how
> enterprise users can browse web safely, using some
> freely available
> applications. I talk about:
> 1) Firefox
> 2) Netcraft Anti-phishing Toolbar
> 3) Flashblock
>
> The first draft of the article is available at:
> http://www.xml-dev.com/xml/SafeBrowsing/
>
> Please review it, and send me any comments, update,
> and corrections.
>
> I am also looking for some security experts, who
> have deployed these
> applications in their enterprise, to quote them in
> the article. Please
> email me seperately if you would like your feedback
> to be quoted in
> the article.
>
> --
> Saqib Ali, CISSP
> http://www.xml-dev.com/blog/
> "I fear, if I rebel against my Lord, the retribution
> of an Awful Day
> (The Day of Resurrection)" Al-Quran 6:15
>
>
> --
> Saqib Ali, CISSP
> http://www.xml-dev.com/blog/
> "I fear, if I rebel against my Lord, the retribution
> of an Awful Day
> (The Day of Resurrection)" Al-Quran 6:15
>
>
-------------------------------------------------------------------------
> This List Sponsored by: SpiDynamics
>
> ALERT: "How A Hacker Launches A Web Application
> Attack!"
> Step-by-Step - SPI Dynamics White Paper
> Learn how to defend against Web Application Attacks
> with real-world
> examples of recent hacking methods such as: SQL
> Injection, Cross Site
> Scripting and Parameter Manipulation
>
>
https://download.spidynamics.com/1/ad/web.asp?Campaign_ID=701300000003gRl
>
--------------------------------------------------------------------------
>
>

__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

-------------------------------------------------------------------------
This List Sponsored by: SpiDynamics

ALERT: "How A Hacker Launches A Web Application Attack!"
Step-by-Step - SPI Dynamics White Paper
Learn how to defend against Web Application Attacks with real-world
examples of recent hacking methods such as: SQL Injection, Cross Site
Scripting and Parameter Manipulation

https://download.spidynamics.com/1/ad/web.asp?Campaign_ID=701300000003gRl
--------------------------------------------------------------------------
Received on Feb 16 2006

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]