Web Application Security (thread)

Fierce domain scan released, RSnake, 2006/12/31
XSS caused by Greasemonkey userscript, Martin Johns, 2006/12/29
ERRATA (Re: "Host header cannot be trusted as an anti anti DNS-pinning measure"), Amit Klein, 2006/12/28
- Re: ERRATA (Re: "Host header cannot be trusted as an anti anti DNS-pinning measure"), Martin Johns, 2006/12/28
Preliminary Call For Papers: OWASP 2007 Europe, Frank Piessens, 2006/12/28
HITBSecConf2007 - Dubai - Call for Papers now open!, Praburaajan, 2006/12/28
Re: [WEB SECURITY] Session hijacking via XSS vuln requring POST impossible?, RSnake, 2006/12/28
Web Backdoor Compilation, David Kierznowski, 2006/12/28
Ruining Security with java.util.Random, Jan P. Monsch, 2006/12/28
- Re: Ruining Security with java.util.Random, Amit Klein, 2006/12/28
What problem have this Rijndael(.NET&PHP) code?, 김영일, 2006/12/28
- Re: What problem have this Rijndael(.NET&PHP) code?, Peter Conrad, 2006/12/28
- Message not available
  - Re: What problem have this Rijndael(.NET&PHP) code?, Scott C. Sanchez, 2006/12/28
- Re: What problem have this Rijndael(.NET&PHP) code?, Jamie Riden, 2006/12/28
Application Security Predictions for 2007, bugtraq, 2006/12/28
CanSecWest 2007 (April 18-20) Call For Papers (Deadline January 7th), Dragos Ruiu, 2006/12/28
forbid non-secure proxy access, trespiko, 2006/12/28
- Re: forbid non-secure proxy access, my.info.lists@gmail.com, 2006/12/28
WASC Articles Project - Call for Participants, robert, 2006/12/11
platform/language crib sheets, Robin Wood, 2006/12/11
WASC-Announcement: MX Injection - Capturing and Exploiting Hidden Mail Servers By Vicente Aguilera Diaz, robert, 2006/12/11
[Full-disclosure] Call For Papers: SecurityOPUS 2007, Sharkey, 2006/12/09
[Full-disclosure] New MySpace worm could be on its way, pdp (architect), 2006/12/07
Administrivia, Andrew van der Stock, 2006/12/04