Hi! On Wed, Mar 17, 2004 at 10:20:26AM -0000, Andrew Aris wrote: > This is mainly the case because web design people dont really > think about security, because thats not their job.
But it is their job to program web applications? I'd rather think a web /designer/'s responsibility should be limited to "making it look good" - maybe using JavaScript for some stuff, but nothing more. Of course, that unfortunately does not mean that web application programmers automatically have a clue on security aspects ... Ciao Thomas _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
