Custom your own category :

  • 1. Choose the categories by select the check box before category names.
  • 2. Choose the methode to combain the choosen categories between 'Slice' or 'Union' in the drop down list.
  • 3. Execute with click the 'Go' button.

Javascript and AJAX Security - How to Make Your Website Safe

Ajax, Client-side Scripting, Web Security

Beneath the peppy front ends of many of todays Rich Internet Applications lies a dark flaw that if left unchecked can bring a site down to it’s knees. For the past few years many designers and developers have been adding AJAX and Javascript functionality to there websites. Many of these websites suffer from threats such as, cross site scripting (also known as XSS), cross-site request forgery (XSRF), and several other well know exploits. Maybe your using one of the popular libraries such as, Prototype and Script.aculo.us, or Dojo and think You’re safe. Think again. Unless you’ve implemented security fixes you may be vulnerable to several types of attacks. The same goes for blog plugins, popular open source applications, and of-course the plethora of free Javascript and AJAX add-ons available at free script websites. If you want to protect yourself, please read on.

Below you’ll find a list of the sites I’ve visited to learn more about Javascript and AJAX security. Please let me know through email or a comment if you know of any other great security resources, and I’ll be glad to post them. Most of the descriptions below are taken from the developers of the example. Thanks, Max.

Full article: http://www.maxkiesler.com

License: Creative Commons Attribution 2.5 License

Add to any service

Related Info Web

  • Tips and Tricks for Ajax Security

    • There are so many things you should know about Ajax. The complexity of the design in a single website could be enormous that a “straightforward” application may be the same as a complicated HTML or even a Java based website. Unfortunately, all the complexities of Ajax are only geared to entertain people and never on security. That’s why Ajax is...

  • Web, JavaScript And Security

    • JavaScript is now main stream, thanks to the popularity and extensive acceptance of AJAX. In fact, AJAX is considered to be a core part of Web 2.0. .. Security makes it difficult Various new web frameworks have come up which allow easy AJAX integration and build sites quickly. However, if the different vulnerabilities are considered, it is not easy any more. Consider the...

  • SEO for Ajax Website

    • AJAX (Asynchronous JavaScript + Xml) mixes of technologies that offers incredible functionality for web sites and get rid of the page reloads. In simple words AJAX brings software like usability to websites.. .. First issue is that AJAX is not visible to search engines. Therefore any content delivered through AJAX or say if websites navigation is delivered through AJAX. Hence search engine...

  • How to Make Your AJAX Applications Accessible - 40 Tutorials and Articles

    • AJAX is a great tool for creating rich internet applications, however, when improperly implemented it can cause huge accessibility issues. The good news is that most of these issues can be fixed so your websites are viewable by a much wider audience. Great resources on accessibility have been around for years, however, many web 2.0 and AJAX websites ignore all...

  • Website Security - (ravichar.blogharbor.com)

    • Recently I attended a Website Security breakfast event organized by WhiteHat. Security expert Bill Penington talked about the lifecycle of vulnerability. Another Security expert Jeremiah Grossman shared some interesting stats about vulnerabilities in web application. This was an event packed with lot of takeaways and also I met several interesting security professionals. ... Full article: http://ravichar.blogharbor.com License: Creative Commons Attribution 2.5 License....