Ajaxian

Jobs @ Ajaxian

Find a Job, Post a job.

Topics

.NET (65)
Accessibility (49)
Adobe (75)
Advertising (3)
Ajax (362)
Ajaxian.com Announcements (4)
Android (2)
Announcements (86)
Apple (1)
Aptana (23)
Articles (205)
Atlas (5)
Book Reviews (19)
Books (30)
Browsers (152)
Builds (4)
Business (16)
Calendar (12)
Canvas (66)
Chat (22)
Cloud (3)
ColdFusion (10)
Comet (50)
Component (110)
Conferences (26)
CSS (123)
Database (10)
Debugging (22)
Design (15)
Dojo (195)
DWR (17)
Editorial (269)
Email (5)
Examples (153)
Ext (66)
Firefox (79)
Flash (74)
Framework (58)
Fun (64)
Games (58)
Gears (65)
Google (139)
GWT (73)
HTML (42)
IE (115)
Interview (28)
iPhone (50)
Java (142)
JavaScript (1033)
jMaki (7)
jQuery (107)
JSON (43)
Library (478)
LiveEdit (5)
LiveSearch (17)
Mac (1)
Mapping (37)
Microformat (3)
Microsoft (34)
Mobile (48)
MooTools (33)
Mozilla (1)
Office (9)
Offline (29)
OpenAjax (5)
OpenWebPodcast (3)
Opera (16)
Performance (93)
Perl (8)
PHP (83)
Plugins (5)
Podcasts (37)
Portal (13)
Pragmatic Ajax (2)
Presentation (59)
Programming (134)
Prototype (211)
Python (10)
Qooxdoo (2)
Rails (37)
Recording (7)
Remoting (19)
RichTextWidget (17)
Roundup (13)
Ruby (62)
Safari (45)
Screencast (36)
Scriptaculous (37)
Security (75)
Server (13)
Showcase (649)
Social Networks (15)
Sound (7)
Standards (44)
Storage (3)
Survey (12)
SVG (17)
Testing (40)
The Ajax Experience (71)
TIBCO (24)
Tip (73)
Toolkit (167)
Tutorial (20)
UI (109)
Unobtrusive JS (20)
Usability (76)
Utility (157)
W3C (6)
Web20 (24)
Widgets (10)
Workshop (7)
XmlHttpRequest (41)
Yahoo! (114)

Does AJAX cause a larger â€œAttack Surfaceâ€? No.

What Hat Security digs deep into the mess of “Ajax is insecure” hype with their article on Myth-Busting AJAX (In)security.

They discuss:

Does AJAX cause a larger â€œAttack Surfaceâ€? No.
Does AJAX make the â€œAttack Surfaceâ€ harder to find? Yes and No.
Can AJAX cause â€œDenial of Serviceâ€? Not really.
Does AJAX rely on client-side security? No.
Does AJAX lead to poor security decisions? Sort of.
Does AJAX make Cross-Site Scripting (XSS) attacks worse? I hope not.
Does AJAX change security best practices? No.

Does this article exhibit common sense? Yes. Does it answer its own questions like Donald Rumsfeld? Yes.

Posted by Dion Almaer at 9:59 am

3.9 rating from 12 votes

Comments Here »

Comments feed TrackBack URI

Activity Stream

Keep up to date on Ajax content via Twitter or FriendFeed

Audible Ajax

Episode 25

In Episode 25, we chat about IE 8, standards, Acid3, server side JavaScript, and more.

Podcast RSS

more podcasts

GET E-MAIL UPDATES

Ajaxian Jobs

More Jobs | Post a Job

Contact us

Who are the ajaxians? Find out.

Please contact us at . We would love to hear about any news that we could put up here.

We have individual blogs too:

Because you need to have the coolest rounded corners

Jobs @ Ajaxian

Topics

Archive

Does AJAX cause a larger â€œAttack Surfaceâ€? No.

Comments Here »

Leave a comment

Activity Stream

Audible Ajax

Episode 25

Podcast RSS

GET E-MAIL UPDATES

Ajaxian Jobs

Contact us

Feeds

Ajaxian

Because you need to have the coolest rounded corners

Jobs @ Ajaxian

Topics

Archive

Does AJAX cause a larger â€œAttack Surfaceâ€? No.

Comments Here »

Leave a comment

Activity Stream

Audible Ajax

Episode 25

Podcast RSS

GET E-MAIL UPDATES

Ajaxian Jobs

Contact us

Feeds

Does AJAX cause a larger â€œAttack Surfaceâ€? No.