Am 23.03.2012 21:18, schrieb Tom Ritter:
> A question came up today: can you overwrite the browser's Crypto
> PRNG? It's unclear to me. Dropping this code into Chrome doesn't
> seem to work: window.crypt.getRandomValues = function(x) { return
> 6;}; BUT doing it in the Javascript Console DOES!
>
> It sure seems like this shouldn't be able to be overwritten...
> ever. Anyone have any idea?
You can definitly overwrite it from a browser perspective anyhow.
Saying if you are in the Javascript Console or any other object with
browser context you can overwrite it. There is no way to prevent that
and it is not wanted to do that.
>>From a web page perspective it could be protected, but still I do not
see any point in it because you could just overwrite the function
accessing it rendering it useless.
Regards,
Nils
_______________________________________________
http://openpgpjs.org
