>From what I've read so far in the blogosphere, I think the crux of the clickjacking problem is being misunderstood. I've written up a short document explaining the attack and its relationship to Confused Deputy at: http://waterken.sourceforge.net/clickjacking/ Any feedback appreciated. Thanks, --Tyler