On Mon, Jan 25, 2010 at 12:02 PM, Aryeh Gregor <Simetrical+w3c@gmail.com> wrote: > On reflection, I'm not at all sure that anyone much would use srcdoc > in a serious app -- it's probably too rigid. It could be useful for > quick hack-ups, but I don't know if those are worth it. Who would > actually use srcdoc? I'd certainly use it as a fairly secure defense against scripting attacks. Just a plain @sandbox with nothing allowed will defend my users more securely than anything a regexp-based filter can promise. ~TJReceived on Monday, 25 January 2010 18:11:23 UTC
This archive was generated by hypermail 2.4.0 : Saturday, 9 October 2021 18:45:08 UTC