Skip this post right now if you’re not interested in details interesting only to web application security geeks.  Don’t complain, I warned you.There’s a lot of wrong ways you can try to secure a web application while still allowing content from users.   It’s a surprisingly difficult thing to do, and any time a non-security [...]

Gratuitous Tech | 5 Comments »