Why is the server-side fix not sufficient?
Posted Dec 2, 2006 1:55 UTC (Sat) by gerv
In reply to: Why is the server-side fix not sufficient?
Parent article: The Firefox password manager vulnerability
But it's not "all web sites". It's a small number of major sites (eBay, mySpace) which include "rich" user-generated content of this sort. Most smaller sites use a packaged CMS; these can be fixed if necessary.
to post comments)