Re: XHR and sandboxed iframes (was: Re: XHR without user credentials) from Mark S. Miller on 2009-06-18 (public-webapps@w3.org from April to June 2009)

From: Mark S. Miller <erights@google.com>
Date: Wed, 17 Jun 2009 17:34:11 -0700
To: Adam Barth <w3c@adambarth.com>
Cc: Ian Hickson <ian@hixie.ch>, Anne van Kesteren <annevk@opera.com>, Tyler Close <tyler.close@gmail.com>, public-webapps <public-webapps@w3.org>
Message-ID: <4d2fac900906171734g2015d48dgd7ff8e196547e848@mail.gmail.com>

On Wed, Jun 17, 2009 at 5:32 PM, Adam Barth <w3c@adambarth.com> wrote:

> I know, but you do appreciate the irony in citing that email in a
> discussion of how to mitigate CSRF.
>


;)

Received on Thursday, 18 June 2009 00:34:48 UTC