Comments on: Untrusted text in security dialogs http://www.squarefree.com/2010/07/14/untrusted-text-in-security-dialogs/ Jesse Ruderman on Firefox, security, and more Fri, 09 Sep 2011 05:56:55 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Mook http://www.squarefree.com/2010/07/14/untrusted-text-in-security-dialogs/comment-page-1/#comment-7027 Mook Thu, 15 Jul 2010 05:40:00 +0000 http://www.squarefree.com/?p=596#comment-7027 That is awesome :) Sadly, security-related UI (i.e. PSM) is rather underowned - as far as I can tell, the current owner is Johnath, but as you mentioned he seems to be way too loaded to spend time on it :( Please think a *lot* more from the web site's point of view (and not just the security one) before removing things like onbeforeunload; it can also be used for good for things like making sure the user is aware that she hasn't committed before closing the page. That is awesome :)

Sadly, security-related UI (i.e. PSM) is rather underowned – as far as I can tell, the current owner is Johnath, but as you mentioned he seems to be way too loaded to spend time on it :(

Please think a *lot* more from the web site’s point of view (and not just the security one) before removing things like onbeforeunload; it can also be used for good for things like making sure the user is aware that she hasn’t committed before closing the page.

]]> By: Giorgio Maone http://www.squarefree.com/2010/07/14/untrusted-text-in-security-dialogs/comment-page-1/#comment-7010 Giorgio Maone Wed, 14 Jul 2010 23:31:54 +0000 http://www.squarefree.com/?p=596#comment-7010 Interesting stuff. I loved the right-to-left URL attack. Thanks for sharing. Interesting stuff. I loved the right-to-left URL attack.
Thanks for sharing.

]]>