[OWASP-Bangalore] Help with whitelists for protection against XSS

Prashanth Sivarajan prash.siv at gmail.com
Wed Jun 10 07:00:32 EDT 2009


the cheat list is blacklisting not whitelisting

On Wed, Jun 10, 2009 at 4:19 PM, Akash <akashmahajan at gmail.com> wrote:

> You can start with the XSS cheatsheet
> http://ha.ckers.org/xss.html
>
> 2009/6/10 Chaitanya <chaitanya.sharma at gmail.com>:
> > Hi.
> >
> > I'm looking for help (tuts, papers, comments etc) related to using
> > whitelists for protection against XSS.  I need to help some UI developers
> > implement whitelists in a java (JSP) project.  Any help from the
> community
> > will be appreciated. I'm sure this discussion will also profit others.
> >
> >
> > Regards,
> > Chaitanya
> >
> > http://blog.chaitanyasharma.in
> >
> > _______________________________________________
> > OWASP-Bangalore mailing list
> > OWASP-Bangalore at lists.owasp.org
> > https://lists.owasp.org/mailman/listinfo/owasp-bangalore
> >
> >
>
>
>
> --
> warm regards,
> Akash Mahajan
> ----------------------------------------------------------
> Security Consultant, (Web / Networks /
> Servers / IT/ Virtualization)
> Founder Headstart Network Foundation
> ----------------------------------------------------------
> http://www.linkedin.com/in/akashm
> http://network.headstart.in
> ----------------------------------------------------------
> _______________________________________________
> OWASP-Bangalore mailing list
> OWASP-Bangalore at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-bangalore
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-bangalore/attachments/20090610/c9896b61/attachment-0001.html 


More information about the OWASP-Bangalore mailing list