I came back from holiday and all the stuff I posted seems to of
disappeared - in fact I can no longer find any reference to CSRF on
the wiki at all. Does anyone know what happened to it? Annoyingly I
didn''t keep a backup of the post - I checked the revisions but
can''t
see my changes anywhere - there seems to be a window between the 11th
and 16th where no edits were made, which seems very odd (this
according to wiki.rubyonrails.com/rails/recently_revised). I
can accept that I dreamed the whole thing, but the large revision gap
seems very odd.
sam
On 5/12/05, Sam Newman
<sam.newman-Re5JQEeQqe8AvxtiuMwx3w@public.gmane.org>
wrote:> Hi all,
>
> I stuck a little bit of information on CSRF on the wiki
> (wiki.rubyonrails.com/rails/show/HowToAvoidCrossSiteRequestForgery)
> and created a "Security Concerns" page from the home page
> (wiki.rubyonrails.com/rails/show/Security+Concerns) - it would
> be good to have a single point of information for all know security
> holes and fixes (even if they aren''t Rails specific). Ideally
> information on CSRF should be merged into the "Securing your
rails"
> book: manuals.rubyonrails.com/read/book/8
>
> Feel free to correct my mistakes!
>
> --
> sam
> magpiebrain.com
>
--
sam
magpiebrain.com