On 03 Mar 2012, at 16:18 , hha...@gmail.com wrote:

> The GET/POST thing indeed has nothing to do with CSRF:
> 
> https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet#Prevention_Measures_That_Do_NOT_Work


Here's another very nice, easy-reading description of CSRF that people may find 
useful:

http://en.wikipedia.org/wiki/Cross-site_request_forgery


Regards

Paolo


------------------------------------------------------------------------------
Try before you buy = See our experts in action!
The most comprehensive online learning library for Microsoft developers
is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3,
Metro Style Apps, more. Free future releases when you subscribe now!
http://p.sf.net/sfu/learndevnow-dev2
_______________________________________________
Mason-users mailing list
Mason-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/mason-users

Reply via email to