Karl Dubost <karld@...> writes: > On top of that you can add a layer of madness with user-agent sniffing. I > have documented one we had in Opera > and forced us to recover automatically. *unfortunately*. Can this be done with scripting *disabled*? I am thinking that XHTML can be used as a defense-in-depth against XSS attacks in the future.
Yuhong Bao