Why is this Microsoft's problem? Cross-site scripting is really a web application problem. Filtering (like trying to filter out SQL Injection) is a losing proposition - people will find ways around the filter.
Cheers Ken From: Ziots, Edward [mailto:[EMAIL PROTECTED] Sent: Monday, 6 October 2008 11:33 PM To: NT System Admin Issues Subject: New XSS protection in IE 8.0, maybe M$ is starting to get it http://blogs.technet.com/swi/ Promising technology, they need to add more into this filter because XSS isnt the only thing out there that needs to be checked. Z ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
