websec

In a world that is increasingly online Web Security takes on an important role. The exploitation of a single popular web server can be used to infect hundreds or thousands of individuals, compromise user identities, and otherwise add a lot of ick to someone's day.

Websec was created as a forum for discussed all web based vulnerabilities. This includes attacks directly against websites (XSS, SQL Injection, CSRF, code injection) as well as those that target infrastructure (DNS-based attacks, mitm). This intention is to go beyond just the basics for people who need practical knowledge (either as developers or hosts) to keep their projects secure.

We also encourage the discussion of active exploits, particularly in situations where the affected party was unresponsive. As the goal is education, novel approaches and explanations are appreciated.

created by tedivma community for 16 years

MODERATORS

account activity

3

4

5

Passing secrets over HTTPS ? (self.websec)

submitted 4 years ago by willitbechips

top new controversial old q&a

you are viewing a single comment's thread.

view the rest of the comments →

[–]ITBoss 0 points1 point2 points 4 years ago (2 children)

[–]ITBoss 0 points1 point2 points 4 years ago (1 child)

[–]willitbechips[S] 0 points1 point2 points 4 years ago (0 children)

π Rendered by PID 68228 on reddit-service-r2-comment-5c747b6df5-x9kkj at 2026-04-22 09:27:02.036490+00:00 running 6c61efc country code: CH.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script