On 03 Mar 2012, at 16:18 , hha...@gmail.com wrote: > The GET/POST thing indeed has nothing to do with CSRF: > > https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)_Prevention_Cheat_Sheet#Prevention_Measures_That_Do_NOT_Work
Here's another very nice, easy-reading description of CSRF that people may find useful: http://en.wikipedia.org/wiki/Cross-site_request_forgery Regards Paolo ------------------------------------------------------------------------------ Try before you buy = See our experts in action! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-dev2 _______________________________________________ Mason-users mailing list Mason-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/mason-users