- From: Ian Hickson <ian@hixie.ch>
- Date: Tue, 30 Oct 2007 09:17:51 +0000 (UTC)
On Tue, 30 Oct 2007, Dave Singer wrote: > > I think if you can collect keystrokes then phishing is also on the > cards, alas. True. > > > 2. It's not clear what would be the best way for UAs to provide the > > > functionality while preventing sites from taking advantage of the > > > feature and annoying users. > > > > Both, and also that it's considered ok for the user to have to tell > > the UA that he wants to go fullfreen (rather than the script having to > > tell the UA that the user wants to go fullscreen). > > I think there's both demand and precedent; and if it's not in the > spec., as I say, it should be explicitly excluded with its reasons, so > browser makers don't simply all add it as an extension. That way, we'd > get all the problems again, plus an interoperability problem as well. Good point. Added a note. -- Ian Hickson U+1047E )\._.,--....,'``. fL http://ln.hixie.ch/ U+263A /, _.. \ _\ ;`._ ,. Things that are impossible just take longer. `._.-(,_..'--(,_..'`-.;.'
Received on Tuesday, 30 October 2007 02:17:51 UTC