[TYPO3-dev] protecting TYPO3 against cross-site scripting and click-jacking attacks ?

[Dmitry Dulepov]

Hi!

bernd wilke wrote:
> In the last sentence they mention
> plugins for WordPress, Drupal and Django.

Interesting becase Django has a built-in transparent protection against 
CSRF, which is on by default.

-- 
Dmitry Dulepov
TYPO3 core&security team member
E-mail: dmitry.dulepov at typo3.org
Web: http://dmitry-dulepov.com/