W3C home > Mailing lists > Public > public-web-security@w3.org > December 2009

Re: Seamless iframes + CSS3 selectors = bad idea

From: Thomas Roessler <tlr@w3.org>
Date: Tue, 8 Dec 2009 09:30:12 +0100
Cc: Thomas Roessler <tlr@w3.org>, public-web-security@w3.org
Message-Id: <0F9DAA5F-C486-43A0-BE95-C11C80DF4EC0@w3.org>
To: Daniel Glazman <daniel@glazman.org>
On 7 Dec 2009, at 22:42, Daniel Glazman wrote:

> sird@rckc.at wrote:
> 
>> a[href$=.pdf]::before{content:url(pdficon.gif)}
>> And it rocks, it really rocks.. but do we really want to give soooo much
>> power to CSS?
> 
> "we"? Who's that "we"? In the World Wide Web Consortium, that "we"
> is the Community on one hand, the W3C Membership (including browser
> vendors) on the other.
> So yes, "we" wanted to add that ability to CSS.

Part of the community has been asking questions about the ever growing expressive power of CSS (and its impact on Web security) for a while now.  I strongly suggest taking that part of the community seriously now, instead of facing problems later.
Received on Tuesday, 8 December 2009 08:30:14 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Sunday, 19 December 2010 00:16:01 GMT