On Jan 31, 9:46 am, cancel bubble wrote:
> "My thesis is that the security situation with JavaScript is so poor that
> the only solution is to kill it. End users have very little in the way of
> protection against malicious JavaScript, major web sites suffer from XSS and
> CSRF flaws, the langua
life kills everyone, let's destroy it.
lol a lil too exaggerated right :P
pretty nice presentation, but even though javascript has some security problems
when used on the browser its mainly a developers problem, same thing with other
languages, just open every remote file and eval it on ruby,
On 31/01/2011 00:10, Poetro wrote:
This is not the problem of the language, but the interpretation and
adding scripts to the web page, in case of browser usage. If there
could be only one JavaScript tag on the page, and that could load the
external scripts, it would be more secure IMHO. Then none
cancel bubble:
> Thoughts?
If you have a hummer and hit in your head. Does it mean this a problem
of hummer?
--
To view archived discussions from the original JSMentors Mailman list:
http://www.mail-archive.com/jsmentors@jsmentors.com/
To search via a non-Google archive, visit here:
http://w
This is not the problem of the language, but the interpretation and
adding scripts to the web page, in case of browser usage. If there
could be only one JavaScript tag on the page, and that could load the
external scripts, it would be more secure IMHO. Then none could inject
script tags to the page
On Mon, Jan 31, 2011 at 12:46 AM, cancel bubble wrote:
> "My thesis is that the security situation with JavaScript is so poor that
> the only solution is to kill it. End users have very little in the way of
> protection against malicious JavaScript, major web sites suffer from XSS and
> CSRF flaws
Oh, yeah, MIT style license is the case.
Regarding Github -- yes, of course, I wanted to upload it there when the
version will have less bugs. But actually I guess it's the good time to
do it already now, since today e.g. I've made some/many changes, and
unfortunately edit the sources without