Mitchell Stoltz wrote:
>> The `Allow scripts to do the following' tree contains the following:
>> [/] Open windows by themselves
>> [ ] Move or resize existing windows
>> [ ] Flip over or under other windows
>> [/] Detect when I leave a page
>> [/] Change status bar text
>> [/] Load images or other objects
>> [/] Set cookies
>> [/] Read cookies
>> [/] Access my History
>
>
>
> This is a great list. While we're at it, can any helpful readers suggest
> any more things that users will want to block from this panel?
I usually have JavaScript disbled because of several security/privacy
implementation issues in the past. Would it be possible to disable all
potentially dangerous functions (with one checkbox) so that it be
relatively safe to use JS even if new implementations bugs are
discovered? I think along the lines of the ghostscript interpreter that
can disable all file operations that may be included in a postscript
file. I'd be willing to pay for it in terms of loss of functionality.
But I'm no JavaScript expert. Maybe the above list already comprises all
these features. I'd just feel better if JavaScript could be confined in
a Java-like sandbox ... ;-)
Cheers, Nils
