Ok we can look into differences between 1.2 and 1.3. Neither of these versions of Firebug have security issues, independent of what you do. If in addition you want to ensure that a web site cannot detect your browser has Firebug, disable the Console panel.
jjb On Jan 11, 5:26 pm, Nux <[email protected]> wrote: > On Jan 11, 9:10 pm, John J Barton <[email protected]> wrote: > > > I welcome suggestions on the current implementation of the console. > > The implementation in 1.05 exposes you to security attacks, I don't > > recommend it. > > But it worked fine with 1.2 too. I understand security concerns about > unsafeWindow ;-) in Greasemonkey, but why FB? I run scripts on very > specific pages - usually written by me. I'm sure most do similar plus > everyone mus explicitly run a script for it to be visible to the > scripts on a server, correct? Or am I entirely wrong here and should > be more careful? --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Firebug" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/firebug?hl=en -~----------~----~----~----~------~----~------~--~---
