Hi Rey, The information from your link is excellent. Since my current project is internal and we aren't using any external JSON sources, some of the security warnings may not be applicable. However I do see how "dangerous" it could be for an external site and double so for those which are doing E-commerce or anything with $$.
Thanks... >Hi Andy, > >Apart from Ray's feedback, also keep in mind that the security issues >with Ajax typically stem from using eval() on JSON packets and external >JS scripts. While not all-inclusive, of late this has been the biggest >attack vector for hackers looking to exploit JS weaknesses. > >This article will give you some additional info: > >http://www.ibm.com/developerworks/library/x-ajaxsecurity.html > >Rey... > > > >Andy Chen wrote: >> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| ColdFusion 8 - Build next generation apps today, with easy PDF and Ajax features - download now http://download.macromedia.com/pub/labs/coldfusion/cf8_beta_whatsnew_052907.pdf Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:287540 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
