[LINK] RFI: Firefox 3.5/3.6
Stilgherrian
stil at stilgherrian.com
Fri Mar 26 12:22:11 AEDT 2010
On 26/03/2010, at 12:07 PM, Scott Howard wrote:
> On Thu, Mar 25, 2010 at 4:57 PM, Roger Clarke <Roger.Clarke at xamax.com.au>wrote:
>
>> 3. Cross-Site Scripting
>>
>> Firefox 3.6 is, as I'd speculated, highly marketer-friendly and
>> consumer-unfriendly in relation to 'cross-site scripting' (which
>> refers to the practice of sites that you visit inviting lots of
>> 'strategic partners' to invade your browser).
>>
>
> No, that is NOT what Cross-Site Scripting (XSS) is at all.
> http://en.wikipedia.org/wiki/Cross-site_scripting will give you a good into
> to what XSS is.
>
> If you have any specific instances of where FF >3.0 is more susceptible to
> XSS attacks than FF 3.0, then I'm sure the Firefox team would be happy to
> hear them.
Also, when does it become "sites that you visit inviting lots of 'strategic partners' to invade your browser", as opposed to just assembling a web page from a variety of data sources?
Stil
--
Stilgherrian http://stilgherrian.com/
Internet, IT and Media Consulting, Sydney, Australia
mobile +61 407 623 600
fax +61 2 8569 2006
Twitter: stilgherrian
Skype: stilgherrian
ABN 25 231 641 421
More information about the Link
mailing list