Ian Hickson wrote:
Yeah, this is mentioned in the security section:http://www.whatwg.org/specs/web-apps/current-work/#security5 ...along with recommended solutions to mitigate it.
All of those mitigation measures seem to be non-ideal.Have any browser makers expressed opinions on which of them they are planning to implement?
Is there a document somewhere outlining the actual benefits of this feature, even as potentially restricted?
Gerv
