On Thu, 2013-08-22 at 08:51 -0700, T.C. Hollingsworth wrote:
> So my reasoning regarding this is similar to Debian's reasoning regarding the
> default enablement of daemons. Debian starts all daemons by default because
> if
> you don't want to run them, you shouldn't install them in the first pl
On Thu, Aug 22, 2013 at 12:34 AM, Paul Wise wrote:
> Whenever this idea has come up (including the current /javascript
> implementation) I have always thought it was a bad idea, especially
> for JavaScript. Exposing more than absolutely needed for each website
> at minimum is an information leakag
On 22/08/2013 09:34, Paul Wise wrote:
> Whenever this idea has come up (including the current /javascript
> implementation) I have always thought it was a bad idea, especially
> for JavaScript. Exposing more than absolutely needed for each website
> at minimum is an information leakage. With JS or
Whenever this idea has come up (including the current /javascript
implementation) I have always thought it was a bad idea, especially
for JavaScript. Exposing more than absolutely needed for each website
at minimum is an information leakage. With JS or CSS it might lead to
security issues in the we