2007/3/20, Hallvord R M Steen <[EMAIL PROTECTED]>:
On 20/03/07, timeless <[EMAIL PROTECTED]> wrote:
> On 3/20/07, Hallvord R M Steen <[EMAIL PROTECTED]> wrote:
> >
http://my.opera.com/hallvors/blog/2007/03/14/window-opener-and-security-an-unfixable-problem
> I believe you'll find that Gmail does not have this problem, because
> when it uses window.open, it opens a gmail page which then triggers a
> server side redirect, and that destroys the window.opener link.
This is incorrect. window.opener survives the redirect and still
points to the opener window.
javascript: void(window.open( 'http://hallvord.com/temp/redir.php'))
I don't know what GMail is doing, but I think a
window.open('','_self') would destroy the original window.opener.
Regards,
Martijn
