Tuesday June 13, 2006 Meena Vyas
All
|
WebServer7.0
Tuesday June 13, 2006 Cross Site Scripting Prevention in Sun Java System Web Server 7.0
Cross Site Scripting Prevention in Sun Java System Web Server 7.0
Check out the new improvements we made in Sun Java System Web Server 7.0 Technology Preview 3. It can be downloaded for free from here. In this blog I will talk about Cross Site Scripting (XSS) prevention.Obj.conf now supports a lot of features which allows you to use it a lot like a programming language, which allows us to configure in our WebServer features similar to in ModSecurity Apache Module.
The main method of preventing Cross Site Scripting (XSS) is through entity encoding, using entities such as "<". We now have a introduced a native input stage filter based on sed which can do XSS filtering.
Read More>>> [Read More] Posted by meena ( Jun 13 2006, 11:49:12 AM IST ) Permalink Comments [0]
