Slashdot Mirror
Chrome Apes IE8, Adds Clickjacking, XSS Defenses
CWmike writes "Google has announced that it added several new security features to Chrome 4, including two security measures first popularized (some later shot down as having 'zero impact') by rival Microsoft's IE8 last year. The newest 'stable' build of Chrome includes five security additions that target Web developers who want to build more secure sites, said Adam Barth, a software engineer on the Chrome team. The two aped from IE include 'X-Frame-Options'" a security feature that helps sites defend against 'clickjacking' attacks, and cross-site scripting protection.'"In Google Chrome 4, we've added an experimental feature to help mitigate one form of XSS [cross-site scripting], reflective XSS,' Barth said. 'The XSS filter checks whether a script that's about to run on a Web page is also present in the request that fetched that Web page. If the script is present in the request, that's a strong indication that the Web server might have been tricked into reflecting the script.'"
G4yfield P3nishands is a touching film about a 29 year old g4y emo man, with long p3nises for fingers. In the tradition of Edward scissorhands, we bring you:
G4yfield P3nishands
Watch as G4yfield stumbles around in his world where his p3nis fingers get him in all sorts of michief. With every simple sneeze, volcanic mayonnayse storms erupt.
Will G4yfield P3nishands live a fruitful life? Is he to find love?
g4y emo man
No Wynona Ryder.
FAIL.
Off topic? The summary is pure troll.
Defenses
I like how Slashdot renders that headline.
45 5F E1 04 22 CA 29 C4 93 3F 95 05 2B 79 2A B2
formed his own company a 2 I know i7 sux0rs, survey which [idge.net] things 1n YOU CAN. WHEN THE
I'm a native american, you insensitive clod!
... and the twitter icon as well, appearing on every story and even on my own journal:
fuck off Slashdot.