Philip TAYLOR wrote: > May I express a personal wish that this behaviour be under > user control ? Whilst I fully understand David Baron's > rationale for the change, I do not believe that it is the > responsibility of browsers to work around security deficiencies > that arise from the correct implementation of W3C standards. > If the CSS, (X)HTML, and/or related (e.g., HTTP) specifications, > either individually or when taken together, lead to a security > deficiency, then this should be addressed at the specification > level and not by mandatory changes to a browser which would > cause the latter to deviate from the specification(s). [snip] > Philip Taylor
This is not possible. If browser followed the current specifications, then what I did in 2008 could happen for sinister purposes, not just reverse testing of IE8. I was able track the visits from Redmond for two weeks. This was achieved by analyzing the request for transparent 1px by 1px images. <http://css-class.com/cssscript/images.css> You can track visited URLs very simply using hidden background images requested by using :visited. -- Alan http://css-class.com/ Armies Cannot Stop An Idea Whose Time Has Come. - Victor Hugo ______________________________________________________________________ css-discuss [cs...@lists.css-discuss.org] http://www.css-discuss.org/mailman/listinfo/css-d List wiki/FAQ -- http://css-discuss.incutio.com/ List policies -- http://css-discuss.org/policies.html Supported by evolt.org -- http://www.evolt.org/help_support_evolt/
