diff options
Diffstat (limited to 'docs/csrf.md')
| -rw-r--r-- | docs/csrf.md | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/docs/csrf.md b/docs/csrf.md new file mode 100644 index 00000000..8e0b9480 --- /dev/null +++ b/docs/csrf.md @@ -0,0 +1,4 @@ +REST framework and CSRF protection +================================== + +> "Take a close look at possible CSRF / XSRF vulnerabilities on your own websites. They're the worst kind of vulnerability -- very easy to exploit by attackers, yet not so intuitively easy to understand for software developers, at least until you've been bitten by one." - Jeff Atwood
\ No newline at end of file |