- TalkBack 9 of 10:
- Next »
- « Previous
- Thread View
- Flat View
- RE: Talking Firefox security with Mozilla's Window Snyder
-
Cross site XHR should not pass cookies but rather be able to only access publically available information. I had high hopes for Firefox when they pulled it from the beta. I was hoping they would follow the IE model and refuse to pass cookies. Cross site XHR that passes cookies pretty much enables the idea of client side proxies for malicious web servers to retrieve private information from other sites.
There is already a mechanism for one site to access the private information from another site- federation and web services. That way the two sites can authenticate each other as well as the client. Sure, it requires more work, but that is the right way to do it. By cowtailing to the flawed w3c standard firefox is enabling web developers to use inherently risky techniques for sharing information and I think it is evident that security, while important, still takes a back seat for the org. It is effectively the same thing as providing plain old strcopy to developers because it is just to much work for them to specify the maximum buffer length. It can be used correctly, but it is much better for the only option to be the more secure option. - Posted by: joshbw Posted on: 08/07/08 You are currently: a Guest | Members login | Terms of Use
Protected Mode is the only thing FireFox is missing
NonZealot | 08/06/08
|
that comes from Windows' architecture
Mitch 74 | 08/07/08
|
ONLY THING? Not so fast !
SFBayguy | 09/15/08
|
Missing e-mail text?
Mike (not Cox) | 03/05/09
|
|
RE: Talking Firefox security with Mozilla's Window Snyder
npdavis@... | 08/07/08
|
|
Cross-Site XHR
Giorgio Maone | 08/07/08
|
Fixed
Ryan Naraine  | 08/07/08
|
|
I'd like to see a true portable version
kcredden2 | 08/07/08
|
|
RE: Talking Firefox security with Mozilla's Window Snyder
joshbw | 08/07/08
|
|
RE: Talking Firefox security with Mozilla's Window Snyder
CobraA1 | 08/07/08
|
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- VMware Infrastructure: A Guide to Bottom-Line Benefits VMware Frustrated by the costs of maintain ever larger data centers?or building ... Download Now
- Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
- Server Consolidation and Containment With Virtual Infrastructure VMware To meet the constant demand to deploy, maintain and grow a broad array of ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- The more you simplify, the more you save
-
When you transition from your existing Red Hat environment to SUSE Linux Enterprise from Novell, you can recognize dramatic cost savings, perhaps as much 50%
- Learn more >>
- Total Economic Impact of SQL Server 2008 Upgrade
-
Read the whitepaper to find out specific cost savings and efficiencies that your company could achieve.
- Click to download >>
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- Learn more about tools to grow your business
-
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
- Save time with the UPS Business Essentials Guide
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer >>
SmartPlanet
- Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
- More from IBM
-
- How to Drive Better Business Outcomes with Exceptional Web Experiences Download the eBook
- Driving Business Agility through SOA Connectivity & Integration Read the White Paper from IBM
- Linking Decisions and Information for Organizational Performance Read the Tom Davenport study
