The World Wide Web Security FAQ

DISCLAIMER

This information is provided by Lincoln Stein (lstein@cshl.org) and John Stewart (jns@digitalisland.net). The World Wide Web Consortium (W3C) hosts this document as a service to the Web Community; however, it does not endorse its contents. For further information, please contact Lincoln Stein or John Stewart directly.

Up to Table of Contents

Backward to Introduction
Forward to General Questions

2. What's New?

Recent versions of the FAQ.

Version 3.0.1, June 22, 2001
- Updated information on Apache Server vulnerabilities
- Updated information on IIS Server vulnerabilities
- Added information on the MIME Headers, cache content flaw, and certificate validation in Internet Explorer 5.5.
- Added information on the email tapping Netscape 6.
- Added information on the Brown Orifice vulnerability in Netscape 4.0-4.74.
- Added new section on Active Content Protection
Version 2.0.1, March 24, 2000
- Updated information on Netscape Enterprise Server vulnerabilities
- Added section on Denial of Service Attacks provided by Marc Myers.
- Updated section on CyberCash, SET, and Open Market.

	Up to Table of Contents
Backward to Introduction		Forward to General Questions

Lincoln D. Stein (lstein@cshl.org) and John N. Stewart (jns@digitalisland.net)

$Id: wwwsf0.html,v 1.7 2001/07/28 17:54:26 lstein Exp $