What I didn't say was this: This is a really hard problem.
That's why (in my view) some time and effort should be spent on the problem rather than just doing what "seems like" a good idea.
For those seeking a real solution, as opposed to a "best efforts," which is the only practical way forward, have a look at capabilities;
In my original post I made the point that a set of rules based on content and properties of a document are effectively capabilities. So there's no omission there.
- N. _______________________________________________ Mozilla-security mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-security
