More on Web Appliaction Security from The Ajax Experience

Joe Walker gave a standout talk on Web Application Security at The Ajax Experience. Joe has posted the slides from his talk, and has provided some great resources.

In his presentation Joe points at:

• Cross Site Request Forgery
• Cross Site Scripting
• Anti-DNS Pinning
• History Stealing
• Web Worms
• Intranet Hacking
• Session Fixation
• Cross Protocol Explotation
• Comparative Browser Security

After watching this presentation, we highly recommend users to not open up their website to HTML comments before understanding the security risks.