Y
Hacker News
new
|
ask
|
show
|
jobs
by
jfaucett
4190 days ago
yea, I'd second the xss, since using rails one sanitize call should be enough.
1 comments
ch0wn
4190 days ago
And setting user cookies to HTTP only.
link