50+ Ways Good HTML Can Go Bad

Via Brad Neuberg: RSnake’s XSS (Cross Site Scripting) Cheatsheet: Esp: for filter evasion.
Limitations on cross site scripting (XSS hereafter) have been troubling me as I try to write enhancements to our library catalog, but the reasons for the prohibition are sound. Without them I could snort your browser cookies (RSnake lists: “cookie/credential stealing/replay/session riding” among [...]

Posted November 1, 2005 by Casey Bisson
Categories: Technology. Tags: , , , , , , , , , , , , . 4 Comments.

Flock Out

The Flock preview is out and I love it. The good folks at WordPress.com are saying “it’s like Firefox with goodies.” I’m saying it’s a browser built for Web 2.0.

tags: web2.0, browser, firefox, flock, goodies, web 2.0, web 20, web browser, web20

Posted October 24, 2005 by Casey Bisson
Categories: Technology. Tags: , , , , , , . 3 Comments.

Simple Bookmarklet Demo

Bookmarklets are interesting little bits of JavaScript stored as bookmarks. They’ve been around since about 1998 (earlier?), but I’ve never bothered to write one.
Here are a few examples:

This sort of creates a bookmark
Alexa Snapshot
Wayback

tags: bookmark, bookmarklet, browser, javascript, web, web browser

Posted September 7, 2005 by Casey Bisson
Categories: Technology. Tags: , , , , , . 5 Comments.

Flock

The developers describe Flock as
[T]he world’s most innovative social browsing experience. We call it the two-way web.
Which is a good enough sales pitch to make me try the free demo, but it’s all still a private beta. Perhaps they’re trying to prove the point that nothing builds buzz better than unavailability. Osakasteve gushes:
A browser that [...]

Posted August 24, 2005 by Casey Bisson
Categories: Technology. Tags: , , , , , , , , , , , , , , , , . 2 Comments.