On Jan 7, 7:30 am, Alex Payne a...@twitter.com wrote:
I intend to address this shortly. It's not the API's intended behavior.
cool. Despite my concerns here, thanks a lot for this whole exchange,
Damon and Chad! This is once again proof that the browser security
model is simply broken and we
I find this to be particularly concerning from a privacy point of
view.
You can retrieve enough information about a user to even replicate
their home page. This could be particularly damaging from a phishing
point of view. Not only can I spoof the Twitter home page, I can now
spoof the