Re: [slightlyoff/ServiceWorker] why cant i register a embedded function as for shared worker? (#902) from publicocean0 on 2016-06-04 (public-webapps-github@w3.org from June 2016)

From: publicocean0 <notifications@github.com>
Date: Sat, 04 Jun 2016 05:16:32 -0700
To: slightlyoff/ServiceWorker <ServiceWorker@noreply.github.com>
Cc:
Message-ID: <slightlyoff/ServiceWorker/issues/902/223752549@github.com>

The solutions are generated by men, not by HTML. If you introduce intelligent FORM field purging , you solve really the problem evoiding to introduce a thousands to tricks that dont solve the problem, but just limiting. 
Service worker is with HTM5, you introduce also what i told above and all solved. It is useless if you limiting service worker if the remaining of page is attacked. It is just a tautology. You have to solve the cause not the conseguences. 

I know that service worker is a critical point, but all is based if xss is prevented or not. If it is not prevented a hacker will found a trick for evoiding your tricks anyway.  


---
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/slightlyoff/ServiceWorker/issues/902#issuecomment-223752549

Received on Saturday, 4 June 2016 12:16:59 UTC