- From: Seth Brown <learc83@gmail.com>
- Date: Tue, 4 Jan 2011 20:18:23 -0500
That was the point of what I said in the previous message. The default security level wouldn't prompt users every time a script changes. But for users who are interested and do understand what's going on--they have the option of checking to see if a script has changed and can do some more verification. On Tue, Jan 4, 2011 at 7:15 PM, Glenn Maynard <glenn at zewt.org> wrote: > And: it still doesn't help. ?Asking a user whether changes to a > Javascript file are okay is meaningless. ?Regular users don't know > Javascript; there's no way they can know whether to accept a change or > not. ?No general security model can be built around requiring the user > to understand the technical issues behind the security.
Received on Tuesday, 4 January 2011 17:18:23 UTC