Errata

Errata for Web Security, Privacy & Commerce

Submit your own errata for this product.

The errata list is a list of errors and their corrections that were found after the product was released.

The following errata were submitted by our customers and have not yet been approved or disproved by the author or editor. They solely represent the opinion of the customer.

Color Key: Serious technical mistake Minor technical mistake Language or formatting error Typo Question Note Update

Version	Location	Description	Submitted by	Date submitted
Printed	Page 21 last footnote	should be "PPPoE" not "PPPoF". actually, it is more often referred to as "PPoE".	Anonymous
Printed	Page 59 Last paragraph	The name of the Advanced Encryption Standard is mistyped. Rinjdael (AES) should be Rijndael (AES) Rinjdael is an... should be Rijndael is an... See http://www.esat.kuleuven.ac.be/~rijmen/rijndael/ for more info.	Anonymous
Printed	Page 67 Footnote 'a' in box "When is 128 Bigger than 512?"	The footnote points the reader to http://cryptosavvy.com/cryptosizes.pdf and http://cryptosavvy.com/toc.pdf Neither of thise links resolve. Adding a 'www.' fixes this. Okay, okay,.. so anyone reading this should be able to figure it out, but thought you'd like to know.	Anonymous
Printed	Page 134 first sentence	"the fact that Simson Garfinkel's can to create" should be something like "the fact that Simson Garfinkel's private key can be used to create"	Anonymous
Printed	Page 190 3rd paragraph	5th line - first word - "access" - I believe should be "assess".	Anonymous
Printed	Page 217 last sentence of domain= definition	You state that if the domain attribute of the cookie is left blank, the domain is assumed to be the same as the domain for the web server that provided the cookie. Actually, a blank domain limits the scope of the cookie to the host that set it. This is significant because it is the only way for a host to indicate that the cookie should be sent back only to it. If you are host foo.bar.com and you set your domain=foo.bar.com, the cookie can be sent back to ANYTHING.foo.bar.com. If you want it sent back only to foo.bar.com you leave out the domain attribute.	Anonymous
Printed	Page 309 3rd paragraph	By default Internet Explorer will not run an ActiveX control that is not signed with a PUBLIC key that has a matching "software publisher's certificate". I think it should be "signed with a PRIVATE key" ; maybe the sentence should be rephrased to avoid misunderstandings?	Anonymous
Printed	Page 317 5th paragraph	"that McLain had shown. ActiveX is flawed." should not have the first period. It is all one sentence.	Anonymous
Printed	Page 372 beginning of last paragraph	extraneous at the beginning of the paragraph.	Anonymous
Printed	Page 380 Figure 14-1	SIMM stands for "Single inline memory module" not "Standard inline memory module	Anonymous
Printed	Page 401 second footnote	double comma	Anonymous
Printed	Page 433 3rd paragraph	it reads "For maximum protection, the firewall should also isolate the firewall from your own internal network (see Figure 15-5)." It should read "For maximum protection, the firewall should also isolate the web server from your own internal network (see Figure 15-5)."	Anonymous
Printed	Page 535 3rd column of table 20-1	"10,48,574" should read "1,048,574"	Anonymous
Printed	Page 541 4th entry of the list	"limit methods to limit" should read "limit methods_to_limit"	Anonymous
Printed	Page 582 second paragraph	extraneous f at the start of the paragraph	Anonymous
Printed	Page 607 last sentence on page	"Federal Trade Commision" should be "Federal Trade Commission" This is already fixed in the Safari version	Anonymous	Dec 05, 2008
Printed	Page 614	The printed code and correction are as follows: sub validate_cc { my ($cc) = @_; my ($digit, $sum, $val); my ($weight) = 1; $cc = s/[^0-9]//g; ^^^^^^^^^^^^^^^^^^ The above line is a typo, it should be: $cc =~ s/[^0-9]//g; $weight = 2 if (length($cc) %2 == 0); while ( $cc ne "" ) { $digit = substr($cc,0,1); $cc = substr($cc,1); $val = $digit * $weight; $val -= 9 if ($val > 9); $sum += $val; $weight = ($weight == 2) ? 1 : 2; } return ($sum % 10) == 0; }	Anonymous
Printed	Page 631 3rd paragraph	In the second line of the 3rd paragraph, "aggressively" is misspelled. Fixed already on Safari.	Anonymous	Dec 05, 2008
Printed	Page 634 4th paragraph	"Transferred" is misspelled as "transfered" in the 4th paragraph. Fixed on Safari already.	Anonymous	Dec 05, 2008
Printed	Page 666 second paragraph	double comma after "mSQL" in sixth line	Anonymous
Printed	Page 683 First row	"in Miami, Florida." author must have meant N 41 27'13.5'', W 70 36'13.8'', things like do not happen in Miami. Excellent book, congratulations.	Anonymous