[Owasp-denver] Back from OWASP NYC!
dave at subverted.org
Wed Oct 1 14:13:28 EDT 2008
-----BEGIN PGP SIGNED MESSAGE-----
David Campbell wrote:
> I've just returned from New York and have lots of interesting info to
> share from the Appsec '08 conference.
> As you may have heard, Jeremiah and RSnake's presentation on
> Clickjacking was squelched at the request of Adobe. However, what I can
> tell you is that the flaw they uncovered is a browser design flaw, so
> don't expect any patches soon. If you're concerned, try the NoScript
> firefox plugin (noscript.net), which appears to mitigate the
> Clickjacking attack.
I remembered a post about clickjacking on a recent DailyDave post. Apologies to those of you who already have this information.
I suggest reading through it and through the references cited in Zalewski's post.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the OWASP-DENVER