W3C home > Mailing lists > Public > public-web-security@w3.org > January 2011

Re: XSS mitigation in browsers

From: Daniel Veditz <dveditz@mozilla.com>
Date: Thu, 20 Jan 2011 18:30:14 -0800
Message-ID: <4D38EFB6.9060405@mozilla.com>
To: Michal Zalewski <lcamtuf@coredump.cx>
CC: Brandon Sterne <bsterne@mozilla.com>, public-web-security@w3.org, Lucas Adamski <ladamski@mozilla.com>
On 1/20/11 6:06 PM, Michal Zalewski wrote:
> I proposed this several years ago, before all the public attention
> clickjacking managed to get:
> 
> ...but the response to any solutions that require any UI logic was
> overwhelmingly negative.

I know, but that was two years ago and we still haven't solved the
problem; time to try again? I'm pretty negative about filling out my
tax forms every year but that doesn't mean I get to skip doing it.
Received on Friday, 21 January 2011 02:30:55 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 21 January 2011 02:30:58 GMT