I found this excellent video of Douglas Crockford (discoverer of JSON) talking about the security problems inherent in Mashups and of JavaScript as a whole.
He proposes a solution involving what he calls vats; a self contained JavaScript interpreter with limited communication to the page. The JavaScript in the page would be the only trusted [...]
Well, I just got a nasty shock!
I got in at the tail end of a thread about the new update notification feature in WordPress 2.3.
One of the comments I read kept ricocheting around in my head. Matt Mullenweg said something about the dashboard RSS feeds transmitting my blog URL. I thought, initially, [...]
Copyright 1993-2008 Christian Höltje
(except where noted otherwise)
Active ingredients:
XHTML 1.1,
CSS2,
XFN,
Microformats,
and
508.
[rss:posts]
[rss:comments]
