[owasp-intrinsic-security] Introducing ABE (with almost definitive syntax specs)

Bil Corry bil at corry.biz
Sat Dec 20 08:33:24 EST 2008

Giorgio Maone wrote on 12/20/2008 5:02 AM: 
> http://hackademix.net/2008/12/20/introducing-abe/
> Comments are welcome

I like the "Logout" rule; I think that's new, right?

How will websites provide policies for ABE?  A common location (e.g. /robots.txt), a response header that declares the location (X-ABE: /ABE/rules.abe), or does the user have to manually discover and "install" the rules while visiting the site?  

- Bil

More information about the owasp-intrinsic-security mailing list