2007-02-02 The Cross-Site Request Forgery (CSRF/XSRF) FAQ sec http://www.cgisecurity.com/articles/csrf-faq.shtml