> While it can be possible that in case of security issues $ will be > undefined, IIRC the error should be different (like Error: > Permission denied to access property '$')
That msg would constitute information leakage because you could use it to tell the difference between a parent frame with $ and without. The more secure way to do it is to give no error message except the cross-frame violation -- I don't know if this has changed in FF but I'll try to test later. -- S. -- --- You received this message because you are subscribed to the Google Groups "MooTools Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to mootools-users+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.
