On 3/16/2012 11:11 AM, Ben Francis wrote:
B2G applications are Open Web Apps, you can read about them here
https://developer.mozilla.org/en-US/apps
They're hosted on a web server like a web site, there's no packaging format
but they may be cached locally using the existing appcache standard.
Not to belabor the point, but it's clear that people are calling into
question the wisdom of this stance. Giving a hosted app which can be
changed at-will significantly enhanced privileges in general *seems*
like a mistake; you make the webservers for these enhanced apps targets
for hacking huge numbers of people in very immediate ways. I think it is
worth discussing whether there are limits to hosted webapps that we
should take into account when designing this system.
--BDS
_______________________________________________
dev-security mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security
