Re: Browserettes
From: jon schatz (jon@divisionbyzero.com)Date: 03/18/02
- Previous message: Curious George: "Re: Restricting cmd.exe access"
- In reply to: merx: "Re: Browserettes"
- Next in thread: ltw1958: "Re: Browserettes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: jon schatz <jon@divisionbyzero.com> To: security-basics@securityfocus.com Date: 18 Mar 2002 13:11:07 -0800
J Funk wrote:
> Hello All,
>
> I've noticed that some of my staple sites (imdb, anywho, mapquest...)
> have started doing that thing with "spawning" multiple browsers, which,
> politely put, I do find to be quite bothersome. I'm sure there are
> security issues associated with this also.
mozilla has supported the disabling of popup windows for some time now.
from the release notes for 0.9.9:
"Mozilla has a new method for disabling popup and popunder windows. It
is now possible to disable the JavaScript window.open() method when it
is not called as a result of a mouse click. When the
dom.disable_open_click_delay pref is set to a nonzero number,
window.open will fail when called more than that number of milliseconds
after a mouse click. Setting this pref (instructions here) should turn
off pop-up and pop-under ads that use the onload handler of tags to
work around our previous window.open() filter. (Bug 92955)
user_pref("dom.disable_open_click_delay", 1000);"
-jon
-- jon@divisionbyzero.com || www.divisionbyzero.com gpg key: www.divisionbyzero.com/pubkey.asc think i have a virus?: www.divisionbyzero.com/pgp.html "You are in a twisty little maze of Sendmail rules, all confusing."
- application/pgp-signature attachment: This is a digitally signed message part
- Previous message: Curious George: "Re: Restricting cmd.exe access"
- In reply to: merx: "Re: Browserettes"
- Next in thread: ltw1958: "Re: Browserettes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
