Y
Hacker News
new
|
ask
|
show
|
jobs
by
thdhhghgbhy
315 days ago
I did, and xss and session sniffing listed on the OWASP web page, would be prevented by following OAuth flows. So that just leaves mitm, which as I said, is effectively breaking https.
1 comments
motorest
315 days ago
> I did, and xss and session sniffing listed on the OWASP web page, would be prevented by following OAuth flows.
OWASP's page lists 3 more examples which it seems you omitted for some reason.
link
OWASP's page lists 3 more examples which it seems you omitted for some reason.