[DUG] Web Sockets security hole
Jolyon Smith
jsmith at deltics.co.nz
Mon Dec 13 11:20:22 NZDT 2010
I may be wrong but a quick read of the top link suggests to me that the issues lies specifically in the implementation of various proxies.
If that’s the case, any implications for Delphi would be for people implementing proxies using Indy, but NOT for clients or servers themselves.
From: delphi-bounces at delphi.org.nz [mailto:delphi-bounces at delphi.org.nz] On Behalf Of John Bird
Sent: Monday, 13 December 2010 11:08
To: NZ Borland Developers Group - Delphi List
Subject: [DUG] Web Sockets security hole
Here is a reference I picked up on the Firefox list about a a security hole in Web Sockets – and affects Java, Flash and HTML5. Research done by Adam Barth of Google.
http://www.ietf.org/mail-archive/web/hybi/current/msg04744.html
http://www.adambarth.com/experimental/websocket.pdf
https://bugzilla.mozilla.org/show_bug.cgi?id=616733
As I am not an Indy etc expert I was wondering if anyone wanted to comment if there is any implication for Delphi?
John
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://listserver.123.net.nz/pipermail/delphi/attachments/20101213/50fef86f/attachment.html
More information about the Delphi
mailing list