[Webkit-unassigned] [Bug 26199] Implement a reflective XSS filter
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Jun 10 10:02:32 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=26199
abarth at webkit.org changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |abarth at webkit.org
------- Comment #11 from abarth at webkit.org 2009-06-10 10:02 PDT -------
> Is it possible to make tests for this?
I'm not sure we have a way to test something that's disabled by default. We'd
need Bug 20534 to be fixed first. Dan Bates has put together a manual test
suite:
http://webblaze.org/dbates/
We could also hack around the issue by letting a site opt-in to the filter
using an experimental header, like X-Enable-WebKit-XSS-Auditor: true.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list