This are really questions about xsite scripting security. I'm trying to
do a couple things using Firefox browser:
1. Need to detect any mouse click in a frame loaded with a page from an
unknown domain. Don't care what they've clicked on. Just want to know
if they clicked within the frame.
2. Need to keep history of the URLs for the webpages loaded within a
frame.
Thanks,
J
9  1248 
jahearn said the following on 2/8/2006 7:19 PM: This are really questions about xsite scripting security. I'm trying to
do a couple things using Firefox browser:
1. Need to detect any mouse click in a frame loaded with a page from an
unknown domain. Don't care what they've clicked on. Just want to know
if they clicked within the frame.
You and damn near every thief and spammer on the web.
2. Need to keep history of the URLs for the webpages loaded within a
frame.
Yeah right. Give up now.
Where I go is my business, not yours.
--
Randy
comp.lang.javascript FAQ - http://jibbering.com/faq & newsgroup weekly
Javascript Best Practices - http://www.JavascriptToolbox.com/bestpractices/
Well, it's my business if I'm writing an product that you purchased,
assuming you want it to work well.
jahearn said the following on 2/9/2006 2:58 AM: Well, it's my business if I'm writing an product that you purchased,
I wouldn't purchase a product from someone who lacked the ability to
read an FAQ and then following it's requested guidelines on quoting.
assuming you want it to work well.
Everybody wants everything to work well but not everything can be made
to work well, and especially not this hair-brained scheme of yours.
--
Randy
comp.lang.javascript FAQ - http://jibbering.com/faq & newsgroup weekly
Javascript Best Practices - http://www.JavascriptToolbox.com/bestpractices/
Randy said the following on 2/9/2006 12:51 am: I wouldn't purchase a product from someone who lacked the ability to
read an FAQ and then following it's requested guidelines on quoting.
Everybody wants everything to work well but not everything can be made
to work well, and especially not this hair-brained scheme of yours.
Ha! What an angry and silly little person you are!
You write on this newsgroup a lot. Why waste time making your silly
little comments (doesn't the faq say something about this)? Either
leave some useful information or don't reply at all and move on.
This scheme you refer to is not mine I assure you. In fact, I informed
the "schemer" that his ideas were likely not possible using javascript
because of security issues, but I'd be happy to look into what might
be possible with Firefox. I was willing to try because the behavior
he's hoping for is by no means nefarious or intrusive, and because I
know I can duplicate this behavior via other means, albeit at a much
higher cost. My time is limited, so posting here seemed a good
solution at the time. Wasn't expecting that the first set of replies
would be so childish though.
jahearn said the following on 2/9/2006 12:12 PM: Randy said the following on 2/9/2006 12:51 am:
I wouldn't purchase a product from someone who lacked the ability to
read an FAQ and then following it's requested guidelines on quoting. Everybody wants everything to work well but not everything can be made
to work well, and especially not this hair-brained scheme of yours.
Ha! What an angry and silly little person you are!
"angry"? Not in the least. "Silly"? I gave you the best answer you can
get. You can not cross-domain script - it is a security violation. So in
Firefox you can't do what you are wanting to do.
You write on this newsgroup a lot. Why waste time making your silly
little comments (doesn't the faq say something about this)? Either
leave some useful information or don't reply at all and move on. http://jibbering.com/faq/#FAQ4_19
<quote>
In the normal browser security model, it is impossible for a script from
one domain to access the properties of pages served from another domain,
or a different protocol. Any attempt to access a property in such cases
will result in a "Permission Denied" error. Signed scripts or trusted
ActiveX objects can overcome this in limited situations.
</quote>
Means that in a default security environment you can't do what you are
wanting to do. But think about the implications if you could do it.
Some hacker wannabe puts your bank website in an IFrame that is set at
100% width and height and then copies your username and password and
posts it in another form to his own server. It doesn't take long to see
why you can't do it.
And just because you didn't get the exact answer you wanted doesn't make
me silly and angry, you have to do some research of your own and this
very question is so frequently asked that it is in the FAQ for this group.
--
Randy
comp.lang.javascript FAQ - http://jibbering.com/faq & newsgroup weekly
Javascript Best Practices - http://www.JavascriptToolbox.com/bestpractices/
JRS: In article <lf******************************@comcast.com>, dated
Thu, 9 Feb 2006 03:51:35 remote, seen in news:comp.lang.javascript,
Randy Webb <Hi************@aol.com> posted : jahearn said the following on 2/9/2006 2:58 AM: Well, it's my business if I'm writing an product that you purchased,
I wouldn't purchase a product from someone who lacked the ability to
read an FAQ and then following it's requested guidelines on quoting.
assuming you want it to work well.
Everybody wants everything to work well but not everything can be made
to work well, and especially not this hair-brained scheme of yours.
.... hare-brained. It refers to the activities of leporines,
particularly in March. There's a book by a chap called Webster, though
Dr Murray's is better.
--
© John Stockton, Surrey, UK. ?@merlyn.demon.co.uk Turnpike v4.00 IE 4 ©
<URL:http://www.jibbering.com/faq/> JL/RC: FAQ of news:comp.lang.javascript
<URL:http://www.merlyn.demon.co.uk/js-index.htm> jscr maths, dates, sources.
<URL:http://www.merlyn.demon.co.uk/> TP/BP/Delphi/jscr/&c, FAQ items, links.
Dr John Stockton said the following on 2/10/2006 4:23 PM: JRS: In article <lf******************************@comcast.com>, dated
Thu, 9 Feb 2006 03:51:35 remote, seen in news:comp.lang.javascript,
Randy Webb <Hi************@aol.com> posted : jahearn said the following on 2/9/2006 2:58 AM: Well, it's my business if I'm writing an product that you purchased, I wouldn't purchase a product from someone who lacked the ability to
read an FAQ and then following it's requested guidelines on quoting.
assuming you want it to work well.
Everybody wants everything to work well but not everything can be made
to work well, and especially not this hair-brained scheme of yours.
.... hare-brained.
Had I meant hare-brained instead of hair-brained then I would have,
undoubtedly, written hare-brained. Understand my intentions before you
insert your foot by trying to correct me. You are starting to get a TPEL
type attitude.
It refers to the activities of leporines, particularly in March.
Yours may, mine didn't.
There's a book by a chap called Webster, though
Dr Murray's is better.
But both of them suck so neither is of much use to me.
--
Randy
comp.lang.javascript FAQ - http://jibbering.com/faq & newsgroup weekly
Javascript Best Practices - http://www.JavascriptToolbox.com/bestpractices/
JRS: In article <zL********************@comcast.com>, dated Tue, 14 Feb
2006 16:57:22 remote, seen in news:comp.lang.javascript, Randy Webb
<Hi************@aol.com> posted : Dr John Stockton said the following on 2/10/2006 4:23 PM: JRS: In article <lf******************************@comcast.com>, dated
Thu, 9 Feb 2006 03:51:35 remote, seen in news:comp.lang.javascript,
Randy Webb <Hi************@aol.com> posted :
to work well, and especially not this hair-brained scheme of yours.
.... hare-brained.
Had I meant hare-brained instead of hair-brained then I would have,
undoubtedly, written hare-brained. Understand my intentions before you
insert your foot by trying to correct me. You are starting to get a TPEL
type attitude.
It refers to the activities of leporines, particularly in March.
Yours may, mine didn't.
There's a book by a chap called Webster, though
Dr Murray's is better.
But both of them suck so neither is of much use to me.
Well, you clearly don't use correct British English; and you don't use
ordinary American English either; and you don't accept their most
authoritative references. Can you tell us what dictionary you do use,
and whether it's publicly available and if so its publisher?
--
© John Stockton, Surrey, UK. ??*@merlyn.demon.co.uk Turnpike v4.00 MIME. ©
Web <URL:http://www.merlyn.demon.co.uk/> - FAQish topics, acronyms, & links.
Check boilerplate spelling -- error is a public sign of incompetence.
Never fully trust an article from a poster who gives no full real name.
Dr John Stockton said the following on 2/15/2006 8:48 AM: JRS: In article <zL********************@comcast.com>, dated Tue, 14 Feb
2006 16:57:22 remote, seen in news:comp.lang.javascript, Randy Webb
<Hi************@aol.com> posted : Dr John Stockton said the following on 2/10/2006 4:23 PM: JRS: In article <lf******************************@comcast.com>, dated
Thu, 9 Feb 2006 03:51:35 remote, seen in news:comp.lang.javascript,
Randy Webb <Hi************@aol.com> posted : to work well, and especially not this hair-brained scheme of yours.
.... hare-brained. Had I meant hare-brained instead of hair-brained then I would have,
undoubtedly, written hare-brained. Understand my intentions before you
insert your foot by trying to correct me. You are starting to get a TPEL
type attitude.
It refers to the activities of leporines, particularly in March.
Yours may, mine didn't.
There's a book by a chap called Webster, though
Dr Murray's is better.
But both of them suck so neither is of much use to me.
Well, you clearly don't use correct British English;
Considering that I am not British, have never claimed to be British and
have even stated so before now, you are mastering the obvious John. I
thought better of you than that.
and you don't use ordinary American English either;
Coming from someone who has such a hatred toward anything American, I
find it ironic that you would claim to have such a vast knowledge of the
American language, it's intricacies and it's dialects. You don't.
and you don't accept their most authoritative references.
You should read Henry David Thoreau's "Civil Disobedience".
Can you tell us what dictionary you do use,
The two on my desk.
and whether it's publicly available
Of course they are. How else did I buy them?
and if so its publisher?
What this has to do with anything, other than an attempt to be pedantic,
only your mind understands.
--
Randy
comp.lang.javascript FAQ - http://jibbering.com/faq & newsgroup weekly
Javascript Best Practices - http://www.JavascriptToolbox.com/bestpractices/ This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: Mark |
last post by:
There are no problems with the following image loading code fragment
and window.status assigments/updates in IE but in Firefox window.status
fails to update. Any suggestions?
(function...
|
by: VK |
last post by:
<http://www.mozilla.org/>
|
by: Yuri Vorontsov |
last post by:
Hallo!
We have troubles (post XP SP2) to open local folders from the web application:
- the web application allows users to select a local file (input type=file)
- the system DOES NOT upload...
|
by: Peter Oliphant |
last post by:
I use Firefox as my browser. As a result, I'm banned from getting Windows
Updates. This seems a bit monopolistic on MS's part, and it means if there
is a security problem or a VS C++.NET 2005 patch...
|
by: Csaba Gabor |
last post by:
Firefox's configuration settings (Prefs.js) can be accomplished via the
interface at about:config.
Q1. Is there any such setting that can be repeatedly altered via
javascript (in a vanilla...
|
by: PMA |
last post by:
Hi all,
I am porting a web application from IE 6.0 to FireFox 1.5. I have
solved almost all compatibility issues (quite a lot but not too bad)
except two of them :
1) Clipboard access thru'...
|
by: Matt Kruse |
last post by:
http://news.zdnet.com/2100-1009_22-6121608.html
Hackers claim zero-day flaw in Firefox
09 / 30 / 06 | By Joris Evers
SAN DIEGO--The open-source Firefox Web browser is critically flawed in...
|
by: =?Utf-8?B?aGFycG8xNA==?= |
last post by:
I have installed firefox 3 for my new vista operated machine. I get the
following error message:
Could not initialise the application's security component. The most probable
cause is problems...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: ryjfgjl |
last post by:
If we have dozens or hundreds of excel to import into the database, if we use the excel import function provided by database editors such as navicat, it will be extremely tedious and time-consuming...
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Sonnysonu |
last post by:
This is the data of csv file
1 2 3
1 2 3
1 2 3
1 2 3
2 3
2 3
3
the lengths should be different i have to store the data by column-wise with in the specific length.
suppose the i have to...
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: marktang |
last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
| |
