W3C home > Mailing lists > Public > public-web-security@w3.org > January 2011

Re: Scope and complexity (was Re: More on XSS mitigation)

From: Boris Zbarsky <bzbarsky@MIT.EDU>
Date: Tue, 25 Jan 2011 17:41:46 -0500
Message-ID: <4D3F51AA.8010604@mit.edu>
To: Adam Barth <w3c@adambarth.com>
CC: Brandon Sterne <bsterne@mozilla.com>, Gervase Markham <gerv@mozilla.org>, Lucas Adamski <lucas@mozilla.com>, public-web-security@w3.org
On 1/25/11 5:32 PM, Adam Barth wrote:
> but I think that others aren't as great (e.g., limiting
> where you can XHR

This is a _very_ commonly requested feature from what I've seen.  Half 
the people who read CORS seem to complain that CORS doesn't do this....

-Boris
Received on Tuesday, 25 January 2011 22:42:22 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 25 January 2011 22:42:23 GMT