> Chrome's implementation is a little less secure since > it does not block mixed iframes and mixed xhr. However, they are working > on improving their Mixed Content Blocker.
I wouldn't be surprised if this is because it would break some of Google's sites. You can't even navigate Google plus without Javascript which is opposite to the W3Cs guidelines and 8/10 times resulting in me simply closing the page. -- _______________________________________________________________________ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) _______________________________________________________________________ _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
