1. 2009-11-16 [10] [security] Danger of Content-Location HTTP response header openid-secu Chris Messina 2. 2009-11-02 [1] Re: [security] Login CSRF in OpenID Authentication openid-secu Adam Barth