On Mon, Feb 25, 2008 at 5:24 PM, Bruno Bowden <[EMAIL PROTECTED]> wrote:
> On Mon, Feb 25, 2008 at 5:08 PM, Kevin Brown <[EMAIL PROTECTED]> wrote: > > > I'm also a little concerned about privacy here. Do we really want the > > gadget > > authors to be able to get the user's IP? For abuse purposes, I'm OK with > > some sort of obfuscated identifier (a salted hash of the IP, perhaps), > but > > this seems potentially dangerous. Of course, they could still get the IP > > anyway using redirects, so maybe this isn't such a big deal. > > > You could do it even simpler than than. Just src some javascript where the > server returns code that sets a variable to your IP address. Caja will eliminate this in the long run (as well as my other proposed way to steal the IP).
