DISQUS

Hello! dmiessler.com | grep understanding is using DISQUS, a powerful comment system, to manage its comments. Learn more.

Community Page

dmiessler.com/ Jump to website »

Subscribe
- New Comments
Community
Top Commenters
- Daniel Miessler
  1031 comments · 2 points
- CarlM
  514 comments · 2 points
- cooperati
  179 comments · 1 points
- arikb
  89 comments · 1 points
- brooksgarrett
  52 comments · 1 points
Popular Threads
- Considering Using danielmiessler.com Instead of dmiessler.com
  4 weeks ago · 8 comments
- Republicans: The Modern Dixiecrats?
  4 weeks ago · 8 comments
- Music | Mastodon: Crack the Skye
  4 weeks ago · 4 comments
- Outbound Number Translation Coming to Google Voice Soon
  3 weeks ago · 3 comments
- Wireless: WPA2 Enterprise Integration With Active Directory 2008
  4 weeks ago · 3 comments
Recent Comments
- I think this is a very helpful link. It fixes all the keyboard mapping problems. Even for VMware server 2.0 http://communities.vmware.com/message/1091425
  3 weeks ago by Mario R Mena
  
  in VMware Server 2.0 For Linux Doesn’t Have a “Send Ctrl-Alt-Del” Button
- Test.
  3 weeks ago by Daniel Miessler
  
  in Testing the New Domain
- "Yes, it helps people through altered perception of the world, but so do three glasses of wine." ___ Oh, so atheists do not drink alcohol because it is too much like religion?...
  3 weeks ago by SayBlade
  
  in Atheism Argued Successfully by Two Quotations
- burden is on those who make the assertion, not on those who deny
  3 weeks ago by Adam
  
  in Atheism Argued Successfully by Two Quotations
- • Theism is not a religion. Atheism is not a religion for the same reason. 'Theism' is an abstract noun which refers collectively to each organized religion which espouses the existence of...
  3 weeks ago by anti-supernaturalist
  
  in The Definition Of Atheism, And Why It Is *NOT* A Belief

dmiessler.com | grep understanding

dmiessler.com/about/

Jump to original thread »

Author

The Difference Between CSRF and Clickjacking

Started by Daniel Miessler · 7 months ago

This might be obvious to those most familiar with CSRF and Clickjacking, but for those just getting a handle on it, here’s a short explanation of a fundamental difference between the two issues.

–

CSRF is your browser doing things on your behalf, without you c ... Continue reading »

1 comment

cooperati
9 months ago

"For the moment, the best defense against clickjacking attacks is to use Firefox with the NoScript add-on installed. Users running that combination will be safe, said Hansen, against "a very good chunk of the issues, 99.99% at this point.""

http://www.computerworld.com/action/article.do?command=viewArticleBasic&taxonomyName=Spam%2C+Malware+and+Vulnerabilities&articleId=9115700&taxonomyId=85&pageNumber=2

-=T=-

reply

Add New Comment

Returning? Login