The Web Application Hacker’s Handbook Discovering and Exploiting Security Flaws

This restriction on the data that individual scripts can access is part of

Download 5,76 Mb.

Pdf ko'rish

bet	654/875
Sana	01.01.2022
Hajmi	5,76 Mb.
	#293004

1 ... 650 651 652 653 654 655 656 657 ... 875

Bog'liq
3794 1008 4334

This restriction on the data that individual scripts can access is part of

a more general

same origin policy

implemented by all modern browsers. This

policy is designed to place barriers between different web sites that are being

accessed by the browser, to prevent them from interfering with each other. The

main features of the policy that you need to be aware of are:

■■

A page residing on one domain can cause an arbitrary request to be

made to another domain (for example, by submitting a form or loading

an image), but it cannot itself process the data returned from that

request.

■■

A page residing on one domain can load a script from another domain

and execute this within its own context. This is because scripts are

Download 5,76 Mb.

Do'stlaringiz bilan baham:

1 ... 650 651 652 653 654 655 656 657 ... 875