Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
urbanists.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
We're a server for people who like bikes, transit, and walkable cities. Let's get to know each other!

Administered by:

Server stats:

549
active users

urbanists.social: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

Mark Stosberg

The Flash browser plugin supported interactive apps & games befor the modern web could handle them.

It were a such frequent source of vulnerabilities that browsers eventually banned it.

SAML feels like that, but for authentication. SAMLStorm is the latest in an ongoing history of XML-parsing vulns, and probably not the last.

workos.com/blog/samlstorm

An alternative, OIDC, is based on REST and JSON, avoiding that class of problems.

workos.comSAMLStorm: Critical Authentication Bypass in xml-crypto and Node.js libraries — WorkOSAny service using xml-crypto or a Node.js SAML implementation using it, should update immediately to the latest version. WorkOS customers are safe and were not impacted.
#CyberSecurity#security#infosec
Mar 15, 2025, 08:42 PM·Public·Web
0boosts·0favorites
ExploreLive feeds
About