RE: Best Practices for handling of XSS attacks

gt; Betreff: Re: Best Practices for handling of XSS attacks > > An interceptor is still a reasonable solution. But not having a form on each > page doesn't really seem like a big deal--just escape any request > parameters; no form, no parameters, no problem. > > Dave > &g

RE: Best Practices for handling of XSS attacks

handling of XSS attacks An interceptor is still a reasonable solution. But not having a form on each page doesn't really seem like a big deal--just escape any request parameters; no form, no parameters, no problem. Dave On Mon, Oct 4, 2010 at 11:55 AM, Pars Man wrote: > I don'

RE: Best Practices for handling of XSS attacks

S attacks An interceptor seems like a reasonable solution. Why don't you want to use HDIV? Dave On Fri, Oct 1, 2010 at 3:15 AM, Pars Man wrote: > Hi, > > I am currently checking the web to find something about how to handle XSS > attacks in my Struts2 application. > Unfortunat

Best Practices for handling of XSS attacks

Hi, I am currently checking the web to find something about how to handle XSS attacks in my Struts2 application. Unfortunately I just cannot find anything. I do not want to use HDIV (http://www.hdiv.org/) or the HDIV-Plugin (https://cwiki.apache.org/S2PLUGINS/home.html). What I thought of is a