On Tue, Jun 11, 2013 at 11:11 PM, Chris Steipp <csteipp(a)wikimedia.org>wrote;wrote:
Not in its current form, but in the glorious future I
dream about being
able to set a content security policy that forbids all inline css and
JavaScript. That would prevent most of the xss that are reported from being
exploitable.
Ah, I see. How I'd love to see that.
*-- *
*Tyler Romeo*
Stevens Institute of Technology, Class of 2016
Major in Computer Science
www.whizkidztech.com | tylerromeo(a)gmail.com