Subscribe

• Subscribe by Email
• Subscribe using any feed reader!
• Subscribe via RSS
• Subscribe to comments via RSS

Recent Posts

• Scientists record the Sound of the Sun
• Swedish house on the Moon
• Frostkilen
• When do they sleep?
• Trash
• ITbende Podcast 41
• Nolan’s Cheddar
• Hamra Winter look
• ePub Validator
• Why a burger looked so good on TV??
• goo.gl
• Vocoders are the things that connect us
• Project Blue Beam test in Norway?
• Pictriev
• It is Trashcan time again
• Trucks collide near tunnel entrance
• Take the Shame
• Synchronized Robot Christmas Dance
• Don’t use a Pin on the Internet
• Volvo by Ikea

Categories

• Blogs
• Gadget
• Import
• Links
• Local News
• MARTINIC
• Music
• News
• nRing DB
• OpenSignOn
• Perl
• Photos & Pictures
• Podcast
• Tools
• Uncategorized
• Video
• Web Development

Archives

• June 2010
• April 2010
• March 2010
• February 2010
• January 2010
• December 2009
• November 2009
• October 2009
• September 2009
• August 2009
• July 2009
• June 2009
• May 2009
• April 2009
• March 2009
• February 2009
• January 2009
• December 2008
• November 2008
• October 2008
• September 2008
• August 2008
• July 2008
• June 2008
• May 2008
• April 2008
• March 2008
• February 2008
• January 2008
• December 2007
• November 2007
• October 2007
• September 2007
• July 2007
• June 2007

Links

• Inga Broerse
• ITbende
• kacokijk
• Milo Broerse
• My delicious page

Meta

• Log in

HTTPOnly ?

September 2nd, 2008   Tagged Cookies, OpenSignOn, OpenSignOn
Posted in OpenSignOn, Web Development  

The XSall implementation of OpenSignOn is not using the HTTPOnly flag now. I don’t see any XSS problems but perhaps it would not hurt to implement it. An extra wall always helps.

Comments

Copyright © 2008 Broerse Blog • Powered by Wordpress