Bob Schellink wrote: > > Spent some more time going over the OWASP list. The PDF[1] is really well > put together and a > recommended read if you are serious about security. > > I think we should put some effort into supporting some of these items. > > A4(Insecure Direct Object References) and A5(Cross-Site Request Forgery) > seems straight forward to > implement in Click. > > bob > > [1]: > http://owasptop10.googlecode.com/files/OWASP%20Top%2010%20-%202010.pdf > (3MB) > Thank you very much Bob. I created issue: https://issues.apache.org/jira/browse/CLK-662 to track this.
George. -- View this message in context: http://n2.nabble.com/How-well-does-a-Click-app-hold-against-these-10-security-risks-tp4930896p4936333.html Sent from the click-development mailing list archive at Nabble.com.
