[LINK] Study shows pop-up warnings are ineffective
Rick Welykochy
rick at praxis.com.au
Tue Sep 30 09:58:17 AEST 2008
Marghanita da Cruz wrote:
> ie while you may be able to download a file - pdf or exe opening/execution
> should be a different function.
>
>> May 2, 2006 (IDG News Service) -- Mozilla Corp. has released an update to its Firefox browser, fixing a known security flaw in the open-source software.
>>
>> The bug, reported last week, involves the way Firefox handles JavaScript code. It could be exploited by attackers to crash an unpatched browser and, in theory, could also provide them with a way to trick the browser into running malicious code, Mozilla said in a security alert
>
> <http://www.computerworld.com/securitytopics/security/holes/story/0,10801,111091,00.html?source=x584>
Will the ironies ever cease? The above page brings up a pop-up window.
Here is the recommended workaround for the bug described:
"It can be circumvented by disabling Firefox's JavaScript handling capability."
Given the prevalence of "Web 2.0" sites, is it even practical these days
to disable JS? Web coders seem addicted to it, and use it often in place
of Good Ole HTML constructs.
Since I often have to hand-code web constructs, plain old HTML suits me
far better than complex JS-HTML interactions. I suppose the culprit is
automated web coding software which produces heaps of bulky and possibly
useless extra cruft on web pages.
cheers
rickw
--
________________________________________________________________
Rick Welykochy || Praxis Services || Internet Driving Instructor
No good deed goes unpunished.
-- Clare Botthe Luce
More information about the Link
mailing list