IFRAME where SRC="javascript:..." has the same disk full problem as Canvas.toTempURL, and a DOS attack can also be launched simply by creating a large array that will fill the hard drive with virtual memory. In general, handling OOM conditions is not covered by the specification. Chris
- [whatwg] Canvas - toTempURL - A dangerous proposal Charles Pritchard
- Re: [whatwg] Canvas - toTempURL - A dangerous pro... Boris Zbarsky
- Re: [whatwg] Canvas - toTempURL - A dangerous... Charles Pritchard
- Re: [whatwg] Canvas - toTempURL - A dangerous... Boris Zbarsky
- Re: [whatwg] Canvas - toTempURL - A dange... Charles Pritchard
- Re: [whatwg] Canvas - toTempURL - A d... Tab Atkins Jr.
- Re: [whatwg] Canvas - toTempURL - A dangerous pro... Kristof Zelechovski
