home tags events about login
one honk maybe more

benjojo replied 28 May 2024 07:25 +0000
in reply to: https://social.treehouse.systems/users/dee/statuses/112516497849105306

@dee for most attacks it's pretty much the perfect way of mitigating things, the only issue is that if you sell that on the mass market you have to figure out how to enumerate all the urls.

The other thing of course that it doesn't protect you from is things like WordPress that conveniently accept POST requests on any URL and then actions them.