Burningbird

Ajax Vulnerability

April 2nd, 2007

Ajax developers should check out a report on Ajax vulnerabilities in several Ajax libraries, and download the extensive advisory. The advisory details the vulnerabilities, and how to protect against.

It's always a bit risky to put out such details, but I, as a developer, really appreciate such because it allows me to better understand how to protect against security risks. Much of the discussion of the vulnerabilities in this advisory isn't necessarily new, but it does cover newer issues, vulnerabilities in popular libraries, as well as overall issues.

Money quote:

An application can be mashup-friendly or it can be secure, but it cannot be both.

Ajax Vulnerability
Author: Shelley Powers
Published: April 2, 2007 at 12:25 pm
Category: Technology
Comment Status: closed with 10 Comments

Comments

Lazycoder » Blog Archive » AJAX library security advisory - 2:28 pm 4/2/2007

[…] Shelley Powers: Share and Enjoy: These icons link to social bookmarking sites where readers can share and […]

Scott - 2:30 pm 4/2/2007

"while(1);"

Ahhhhh, nothing like locking up the users browser. Niiiiiice. Why not program a big middle finger popping up on the screen too just before the while?

Arthur - 3:17 pm 4/2/2007

Why not program a big middle finger popping up on the screen

Because adding that will take an extra graphical designer, a Q&A tester and a projectmanager and we're already over our budget…

Arthur - 3:18 pm 4/2/2007

(that was a Joke 2.0)

Scott - 3:35 pm 4/2/2007

Where is the flipTheBird() widget when you need one? ;)

Shelley - 4:20 pm 4/2/2007

If you all want a flipTheBird widget, I will provide one.

Think of the uses…

Malcolm - 4:41 am 4/3/2007

Shelley, there are those among us, your loyal readers, who are sufficiently ill-mannered to want to hold you to that promise.

fp - 5:51 am 4/3/2007

I would very much like a "Flip the Bird" widget. I could use it to fill the space others might dedicate to a "Bloggers Code of Conduct" badge.

Virtual Waterboarding - 7:10 am 4/3/2007

[…] comments on an unrelated post, Shelley offers a flipTheBird widget. I would very much like a "Flip the Bird" widget. […]

Secure AJAX Mashups on iface thoughts - 8:47 pm 4/3/2007

[…] I like the way in which Brent brings in security and scalability. In fact Shelley Powers has a good quote on her blog regarding this An application can be mashup-friendly or it can be secure, but it […]

Thanks to all those who have contributed to the discussion. Comments are now closed, but you can contact the author of the post directly.

Ajax Vulnerability

Categories