Antivirus VBA32 VirusBlokAda / Антивирус VBA32 ВирусБлокАда / НОВОСТИ БЕЗОПАСНОСТИ Twitter secures mobile Firefox 4 users from XSS attacks rus Home Feedback Search Sitemap

SEARCHING
PERSONAL AREA
Логин:
Пароль:


NEWS
24.01.2011
Results of the self-protection test on a platform x64
Подробнее
03.08.2010
Microsoft closed vulnerability in lnk-files
Подробнее
09.04.2010
VBA32 has received new gold...
Подробнее
01.03.2010
General manager of "VirusBlokAda" Ltd Bagmet Alexander Vladimirovich has been awarded with the order «THE FATHERLAND’S GLORY STAR»
Подробнее
23.04.2009
Updatings of Vba32 are accessible now on internal resources byfly.
Подробнее

 

НОВОСТИ БЕЗОПАСНОСТИ Twitter secures mobile Firefox 4 users from XSS attacks

24.03.2011 Twitter secures mobile Firefox 4 users from XSS attacks
Twitter has launched new security capabilities designed to protect users of the micro-blogging service accessing it through the newly launched Firefox 4 web browser.

The Content Security Policy (CSP) feature was developed by Mozilla in an attempt to thwart cross site scripting (XSS) attacks, according to a post on the Twitter Engineering blog.
CSP works by forcing the browser to ignore the JavaScript injected by a XSS attacker into a web page and to load only external assets from a set of whitelisted sites.
The CSP feature works only on Twitter's mobile site at present, but the firm hopes to roll it out across "more of Twitter" in the future. The firm also urged users to request support for the standard in their preferred browser.
"Allowing sites like Twitter to disable inline JavaScript and whitelist external assets is a huge step towards neutralising XSS attacks. However, for many sites it is not going to be as simple as flipping a switch," Twitter said.
"Most sites will require some work and you may need to alter a few third-party JavaScript libraries. Depending on how complex your site is, this could entail the bulk of your effort."

 

 

CONTACTS

127106 Russia, Moscow, Gostinichnaya str., 10/5
Tel: +7 (495) 221-21-07
E-mail: [email protected]

Система электронных платежей      Rambler's Top100   

ChronoPay - Internet Payment Service Provider: accept online payments with credit cards and debit cards  

For home useFor corporate useFor file serversAutomated management and updatingProtection of e-mail systemsProtection of Gateways
AntivirusBeta-versions
BrieflyLicenses and certificatesClientsPartnersFor dealers
Software development
Company newsProducts and updatingsSafety NewsPress-kitSubscription to dispatch
Jobs at VBA32 - ProgrammerJobs at VBA32 - TesterWork for students
1-Month TrialSupport of educationSupport of medicine