W3C home > Mailing lists > Public > public-webapi@w3.org > March 2006

Re: Safe copy and paste with scripts

From: Jim Ley <jim@jibbering.com>
Date: Wed, 1 Mar 2006 17:05:10 -0000
Message-ID: <007c01c63d52$4cbe7280$15effe51@Snufkin>
To: "Web APIs WG" <public-webapi@w3.org>

"Jonas Sicking" <jonas@sicking.cc>
> It might even be better that sites can prevent copying by simply canceling 
> the event.

So right now, in IE people can do that - it's very easy yet they don't - 
this suggests that it's not an important use case so we shouldn't worry 
about it.

The bigger problem is not cancelling it's changing - so you go to copy a url 
into an email message, and a different link ends up on the clipboard.  Or if 
you simply happen to be on a page and the browser can look at what is in 
your clipboard, even if it's your untrusted data, yet allowing access to the 
content when you do want to give your clipboard contents.

Jim. 
Received on Wednesday, 1 March 2006 17:05:57 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:18:53 GMT