BYOND site should parse Java Script

BYOND Forums

Announcements · BYOND Help · Bug Reports · Feature Requests · Beta Testers · Beta Bugs · Developer Help · Design Philosophy · Demos & Libraries · Tutorials & Snippets · Art & Sound · Classified Ads · Game Updates · Contests & Events · Linux Talk · On Topic · Off Topic

ID:134072 Jul 30 2007, 10:53 pm
Miran94	I think it should parse Java script it would be unbelivabley usefull.

Jul 30 2007, 11:00 pm
Smoko	I think it should not parse Java script it would be unbelievable insecure.

Jul 30 2007, 11:02 pm In response to Smoko
Miran94	Or it could only be parsed on member pages so people can add java to their Membership page.

Jul 30 2007, 11:17 pm In response to Miran94
Smoko	[link]

Jul 30 2007, 11:20 pm

Crispy

No, no, no.

If we allow JS, then we should also make it possible to log into anyone's key you like without a password, just to level the playing field between hackers and the general population. Because allowing people to enter arbitrary Javascript on BYOND pages would effectively allow hackers to do that. (By stealing login cookies.)

Actually, the BYOND site does "parse" Javascript already, in order to disable it! No special parsing is required to allow Javascript, quite the opposite. But I'm pretty sure that's not what you meant.

Before you ask, no it's not possible to discriminate between "good" Javascript and "bad" Javascript, and only block the "bad" scripts.

Jul 30 2007, 11:24 pm
Miran94	Ok then can someone delete the thread.

Jul 30 2007, 11:28 pm In response to Miran94
Smoko	It's better off being left. That way when people start using the search option for feature requests, they'll be saved the effort of making a post.