W3C home > Mailing lists > Public > public-html@w3.org > January 2008

RE: iframe@security

From: Richard Conyard <Richard@redantdesign.com>
Date: Mon, 21 Jan 2008 11:59:52 -0000
Message-ID: <70534E2542D210419652675ED5ACD888BF74A5@ad01.redant.local>
To: "HTMLWG" <public-html@w3.org>

Whilst and interesting article and interesting as a concept, placed at
this layer within a web application stack I'd be worried about the
technique doing more harm than good.  Since the security benefits are
dependent upon UA (and even then there is potential for exploits), the
implied security might paper over flaws that should be addressed in
other areas.

Richard.

-----Original Message-----
From: public-html-request@w3.org [mailto:public-html-request@w3.org] On
Behalf Of Joshue O Connor
Sent: 21 January 2008 11:42
To: Ben Boyle
Cc: HTMLWG
Subject: Re: iframe@security
Received on Monday, 21 January 2008 12:00:58 UTC

This archive was generated by hypermail 2.3.1 : Thursday, 29 October 2015 10:15:29 UTC