possible security upside: hacker.freedns.com can't make calls to randomguy.freedns.com ? (where freedns.com is a site that lets users buy / get free subdomains)
-David R On 1/26/06, clark slater <[EMAIL PROTECTED]> wrote: > > I was totally *disgusted* to find out that our site was failing to make > remoting calls when loaded via http://bayinteractive.com instead of > http://www.bayinteractive.com > > Sure enough FP8 security sandbox at work, because the remoting calls were > using an absolute path to the gateway instead of a relative path (to make > debugging possible from the IDE). I expected the security model would > determine the two addresses as being from the *same* domain and therefore > allow calls. But it classes the two as separate domains. > > How utterly frustrating is that? So watchout and keep all your remoting > calls and loadmovies relative or you too will fall into this cunning Adobe > security trap. > > If anyone can explain the upside of this particular behaviour in security > terms I'd love to hear it. > > Clark > _______________________________________________ > Flashcoders mailing list > Flashcoders@chattyfig.figleaf.com > http://chattyfig.figleaf.com/mailman/listinfo/flashcoders > _______________________________________________ Flashcoders mailing list Flashcoders@chattyfig.figleaf.com http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
