W3C home > Mailing lists > Public > www-svg@w3.org > August 2003

Re: network

From: Jim Ley <jim@jibbering.com>
Date: Mon, 18 Aug 2003 18:00:35 -0000
To: www-svg@w3.org
Message-ID: <bhr486$rbq$1@sea.gmane.org>

"Randy Nonay" <randy.nonay@net-linx.com> wrote in message
>   This argument smacks of using logic in the form of "everything else is
flawed, so
> why should we bother to fix the error?".

No, the argument is, the ability of websites to perfrom DDOS attacks on
other websites, already exists, every javascript capable browser on every
platform (even things like AvantGo, and webTV, and Fresco etc. let alone
Opera/Mozilla/IE) already exist, so Denial of Service is not an issue.

Opening sockets back to the same machine, is not a serious problem, a number
of web technologies have been delivering that for some time, without serious

Opening 3rd Party URLs via HTTP in script exists in IE/mozilla/NN4 in a
trusted environment, SVG in a trusted environment also becomes more useful,
People talk about SVG outside the browser, yet then still limit themselves
to http, as long as the security model is sound (and this is difficult, but
should be tried) then non-web svg applications having sockets would be a
very good idea, if I'm SNMP monitoring my machines, (so basically drawing a
load of graphs) it seems silly to have to pump it over HTTP, and it's
network inefficient - so doing it remotely is very expensive.

SVG is not just for web-browsers.

Received on Monday, 18 August 2003 14:00:40 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 22:53:58 UTC