[prev in list] [next in list] [prev in thread] [next in thread]
List: kde-usability
Subject: Re: Security and usability
From: Roland Seuhs <roland.seuhs () hasos ! com>
Date: 2003-08-18 19:18:29
[Download RAW message or body]
Am Montag, 18. August 2003 19:09 schrieb Datschge:
> * Embedding of "foreign" (ie. not located on the domain the user intended
> to visit) html data using frames, iframes and layers, eg. for
> advertisements. * Embedding of "foreign" data like pictures, java, flash,
> eg. for
> advertisements, so called web bugs etc.
> * Embedding of "foreign" JavaScript, eg. for displaying advertisements as
> embedded html, pictures or embedded flash/shockwave coupled with cookie
> data saving.
> * Loading requested data of any kind from domains other than the visited
> one (aka "foreign" data): Deny
Great, now almost all my sites are broken because I usually have all static information (pictures, css, \
js) served from another domain because I use mod_rewrite. Google's archive is broken (frame loaded from a \
different domain because Google otherwise couldn't handle the load), and so is the Google picture-search. \
I just checked, I also could no longer use my webbank, because it also uses frames from different \
domains. No, I have to rephrase: I could no longer use my webbank with Konqueror. I and nobody else will \
change banks just because of moronic privacy policies. Almost all pages with screenshots are broken \
because they often have the screenshots on other servers. And bye, bye slashdot, it also gets its images \
from another domain. Thousands of other sites will be broken as well.
It's really scary.
I write really long arguments to reduce the annoyances a little bit, and the only proposals are even more \
popups, more "deny"-policies and more annoyances that would - when implemented - turn Konqueror into \
completely useless software when using the defaults.
If some webmaster wants to give a 3rd party user information, he will do it. With or without \
cookies/images/whatever. There is absolutely nothing you can do to prevent that.
All your supposed "solutions" are only supplying a false sense of security/privacy - and annoyance. \
Absolutely NOTHING else. So please, leave all those paranoia-settings in there for those who want it, but \
don't bother everybody with it and turn them OFF by default.
Roland
--
Hardware: The parts of a computer system that can be kicked
_______________________________________________
kde-usability mailing list
kde-usability@mail.kde.org
http://mail.kde.org/mailman/listinfo/kde-usability
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic