-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mislav Marohnić wrote: > On 6/13/07, Marius Feraru <[EMAIL PROTECTED]> wrote: >> [ Seeing you mentioned "myIframe" (+ the reference to a "document" >> property), I'm assuming you're really talking about IFRAMEs, i.e. the HTML >> element ]. > > Marius, cross-frame scripting is perfectly harmless. Browsers enforce the > same-domain policy with frames, too, so you can't mess around with documents > in other frames that don't belong to your site. But when they do, being able > to mess around with them is sometimes what web apps build on.
"IFRAME" !== "FRAME". ;-) - -- Marius Feraru -----BEGIN PGP SIGNATURE----- iD4DBQFGcAQktZHp/AYZiNkRAvPXAJMHasXw7a3Zp/eXkGQUjOLMZGuBAJ9WVlTQ El3P2IQqhgU4PAzC58FhEA== =v9Jj -----END PGP SIGNATURE----- --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Prototype: Core" group. To post to this group, send email to prototype-core@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/prototype-core?hl=en -~----------~----~----~----~------~----~------~--~---