|
|
Posted by Alan J. Flavell on 11/24/77 11:51
On Tue, 27 Jun 2006, jojo wrote:
> Of course it doesn't. But I interpreted this as a "I know about the
> disadvantages of JavaScript and can live with it".
In a WWW context, that's not the question. It's not about whether
*you* as author can live with it, it's about whether *web users* can
live with it. The general view around here is that they can't and
won't, and shouldn't be expected to.
The relevant German office ("Bundesamt für Sicherheit in der
Informationstechnik") says this (in an English edition, since this is
a predominantly English-speaking newsgroup):
_
/
Avoid active content: Customers should always have the option of
refusing technologies or methods which can bring security problems
with them. These include active content such as JavaScript and
ActiveX. Only activate these in your web browser if you are on a
trustworthy website. As this is unlikely to be obvious to customers,
security-conscious suppliers should always offer a second channel.
For example, many animated demonstrations on websites require active
content such as JavaScript. Customers' attention should be drawn to
the fact that JavaScript needs to be activated in the browser to see
a demonstration, but that this can also be viewed without JavaScript
as a simple sequence of pictures.
\_
Seems to me to cover the most important points. See
http://www.bsi.de/english/publications/fb/F09E_Comz_en.pdf
Navigation:
[Reply to this message]
|