XSS is for real

Posted Apr 23, 2006 15:42 UTC (Sun) by anton (subscriber, #25547)
In reply to: XSS is for real by Duncan
Parent article: Cross-site scripting attacks

>Turning off Javascript "drastic", as the article states? I don't
>/think/ so! Rather, it's been the default here for a good eight years
>or more.

On my accounts, I always turn off JavaScript (and a bunch of other
stuff), and *never* turn it on. And as for you, that certainly
affects what I buy.