The World Wide Web Security FAQ

1. Introduction

This is the World Wide Web Security Frequently Asked Question list (FAQ). It attempts to answer some of the most frequently asked questions relating to the security implications of running a Web server and using Web browsers.

Copies of this document can be obtained at:

http://www.w3.org/Security/Faq/ (html)
http://www.w3.org/Security/Faq/www-security-faq.tar.gz (tar gzipped archive)
http://www.w3.org/Security/Faq/www-security-faq.zip (PKZIP archive)

Sorry, no text-only or postscript version is available.

This FAQ will be available in expanded book form in December 1997. The Web Security Reference Guide, published by Addison-Wesley Longman is a greatly expanded version of this document (to the tune of 450 pages!)

This document is © copyright 1995, 1996, 1997 Lincoln D. Stein. It may be freely mirrored electronically as long as the authorship is correctly attributed and the entire document is maintained intact. Small excerpts of up to five paragraphs are allowed, however. Distribution in printed form is prohibited unless prior permission is obtained from the author.

Many thanks to the following people for their helpful comments and contributions to this document:

Bob Bagwill <bagwill@nist.gov>
Jim Carroll <jcarroll@wellspring.us.dg.com>
Tom Christiansen <tchrist@mox.perl.com>
Mike Daren <mdaren@virtc.com>
John Franks < john@math.nwu.edu>
Paul Hoffman <www-servers@proper.com>
Laura Pearlman <laura@usc.edu>
Louis Perrochon <perrocho@inf.ethz.ch>
David Weisman <weisman@osf.org>
William C. DenBesten <DenBesten@cs.bgsu.edu>
Ian Redfern<redferni@logica.com>
Bob Denny <rdenny@dc3.com>
Eric Hammond <eric.hammond@sdrc.com>
Peter Trei <trei@process.com>
Brian Kendig <brian@netscape.com>
Lewis Geer <geer@microsoft.com>

Back to Table of Contents

Forward to What's New

Lincoln D. Stein (lstein@w3.org)
WWW Consortium

Last modified: Thu Nov 6 22:24:51 EST 1997