Comments on: JavaScript Turnoff Week http://www.meryl.net/2005/05/javascript-turnoff-week/ Content on writing, tech, business, marketing, web design. Sat, 10 Jan 2009 04:42:30 +0000 http://wordpress.org/?v=2.7 hourly 1 By: tndal http://www.meryl.net/2005/05/javascript-turnoff-week/comment-page-1/#comment-6043 tndal Mon, 07 Aug 2006 06:13:03 +0000 http://meryl.net/new/2005/05/10/javascript-turnoff-week/#comment-6043 <p>Turn it on. You'll only have to turn it off again when the next Javascript exploit is found. And what do you do when an AJAX page downloaded in your browser starts scanning your internal network's ports? Hmmm, how will you even know this is happening unless you're run a tight firewall on each machine on the internal network. And if you're doing that, why have an internal network anyway?</p> <p>Any downloaded code is inherently insecure. That has always been true. The only secure systems are those that do not permit downloading code. Javascript must die.</p> Turn it on. You’ll only have to turn it off again when the next Javascript exploit is found. And what do you do when an AJAX page downloaded in your browser starts scanning your internal network’s ports? Hmmm, how will you even know this is happening unless you’re run a tight firewall on each machine on the internal network. And if you’re doing that, why have an internal network anyway?

Any downloaded code is inherently insecure. That has always been true. The only secure systems are those that do not permit downloading code. Javascript must die.

]]> By: Robert http://www.meryl.net/2005/05/javascript-turnoff-week/comment-page-1/#comment-804 Robert Thu, 12 May 2005 11:43:10 +0000 http://meryl.net/new/2005/05/10/javascript-turnoff-week/#comment-804 <p>Fx 1.0.4 to the rescue!: (available at mozilla.org)</p> <p>Quick enough? :)</p> Fx 1.0.4 to the rescue!:
(available at mozilla.org)

Quick enough? :)

]]>