Issue 2327: Missing allow scripts and trusted sites security feature
http://code.google.com/p/chromium/issues/detail?id=2327
Comment #6 by [EMAIL PROTECTED]:
We are not likely to add options to turn on/off javascript, flash, etc. For
most
people it's not an understandable option, and even then you still don't get
much
benefit as even saying "run script on this page" or "don't run script on
this page"
is too coarse. (E.g. on the bug-tracker I want the javascript to run so I
get nice
little pop-downs that let me choose labels, but I certainly don't want to
execute any
javascript in someone's comment.)
We include anti-phishing and anti-malware technologies to help mitigate the
risk from
malware (e.g. if we see script coming from a site known to distribute
malware, we
will block that and present a warning), we also run in a sandbox to help
mitigate
these risks. Expecting users to decide on every snippet of javascript is
not a
solution that we feel is usable, or that really offers much of a security
benefit,
and so this is not something we are interested in doing.
Issue attribute updates:
Status: WontFix
Labels: -private -Security
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Chromium-bugs" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/chromium-bugs?hl=en
-~----------~----~----~----~------~----~------~--~---
