to be constructive, from a message sent privately to mirjam explaining > what i meant by auditing: > > o the ncc web infrastructure incorporates elements from non-ncc > sites > > o as we learned from the youtube incident, those sites can deliver > undesirable javascript > > o if we audit manually today, we can assert we're clean today > > o but one or more of the incorporated contents could change tomorrow > and include undesirable javascript > > o ncc softeng could write code to traverse the site regularly to audit > for new javascript
if i developed web sites, i would like such a tool randy
