Mastodawn

i'm thinking about writing a zine reference for CORS, XSS, CSP, CSRF, etc because all the acronyms feel so impossible to remember and it's so useful to know the basics

but.. what is all that stuff _called_? "web security" and "browser security" both feel way too broad. So far I've just been saying "you know, CSRF and CORS and XSS and stuff" to people

Show thread

Erik Sturcke

@b0rk yes please I would buy this in an instant! The way the web evolved a lot of this stuff seems backwards and unintuitive. I’ve been doing this for over a decade and am not happy about my mental models or how to articulate the what and why.