You don't need a guru, just a crossdomain file. Just save this as " crossdomain.xml" and place it in the root of the site (and of course change "yourdomain" to your real domain).
<?xml version="1.0"?> <!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd";> <cross-domain-policy> <allow-access-from domain="yourdomain.com" /> <allow-access-from domain="*.yourdomain.com" /> </cross-domain-policy> It's not that difficult and it makes your site more secure. That sounds like an upside to me. -- ~Trout http://www.amongtrout.com On 1/27/06, Bennie Boone <[EMAIL PROTECTED]> wrote: > > I don't see upside. It just sucks. We have the same problem with our > remoting calls www.animationmentor.com vs http://animationmentor.com > > I am looking for an ActionScript GURU. Any takers? If so email me > [EMAIL PROTECTED] > > > > > > -----Original Message----- > From: Rich Rodecker [mailto:[EMAIL PROTECTED] > Sent: Thursday, January 26, 2006 1:59 PM > To: Flashcoders mailing list > Subject: Re: [Flashcoders] Gotcha: F8 Security Model > > i believe thats been around since flash 7...can't load data from > different > subdomains. I wish they could have excluded www. from counting as a > differetn subdomain, but this is one case where i really dont mind the > extra > security, it's kind of needed if flash is going to be taken seriously by > the > corporate world. > > > > > > On 1/26/06, David Rorex <[EMAIL PROTECTED]> wrote: > > > > possible security upside: > > > > hacker.freedns.com can't make calls to randomguy.freedns.com ? (where > > freedns.com is a site that lets users buy / get free subdomains) > > > > -David R > > > > On 1/26/06, clark slater <[EMAIL PROTECTED]> wrote: > > > > > > I was totally *disgusted* to find out that our site was failing to > make > > > remoting calls when loaded via http://bayinteractive.com instead of > > > http://www.bayinteractive.com > > > > > > Sure enough FP8 security sandbox at work, because the remoting calls > > were > > > using an absolute path to the gateway instead of a relative path (to > > make > > > debugging possible from the IDE). I expected the security model > would > > > determine the two addresses as being from the *same* domain and > > therefore > > > allow calls. But it classes the two as separate domains. > > > > > > How utterly frustrating is that? So watchout and keep all your > remoting > > > calls and loadmovies relative or you too will fall into this cunning > > Adobe > > > security trap. > > > > > > If anyone can explain the upside of this particular behaviour in > > security > > > terms I'd love to hear it. > > > > > > Clark > > > _______________________________________________ > > > Flashcoders mailing list > > > [email protected] > > > http://chattyfig.figleaf.com/mailman/listinfo/flashcoders > > > > > _______________________________________________ > > Flashcoders mailing list > > [email protected] > > http://chattyfig.figleaf.com/mailman/listinfo/flashcoders > > > > _______________________________________________ > Flashcoders mailing list > [email protected] > http://chattyfig.figleaf.com/mailman/listinfo/flashcoders > _______________________________________________ Flashcoders mailing list [email protected] http://chattyfig.figleaf.com/mailman/listinfo/flashcoders
