SANS Internet Storm Center; Cooperative Network Security Community – Internet Security – isc Swa Frantzen blogs, “Frequent readers will know that we often recommend to ease up on allowing scripting as it’s used by the bad guys. XSS bugs are basically so bad…” read the entire article here.