-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hey@all :) Jorge Arellano Cid wrote:
I once asked in this list how many developers were willing to work on Dillo FLTK2 if released. One answer still stands.
I would be willing to try to implement our concepts against session riding in dillo. We (Martin Johns and myself) did some work in this area and created a http proxy and a firefox extension to protect users of web applications against session riding. Both the proxy and the extension approach are highly non-trivial, for different reasons. One being the complexity of the mozilla framework. With dillo this might be a lot easier, so dillo could be the first browser to be immune against session riding out of the box. I am also interested in improving dillos css capabilities. I know there are some patches around. And embedding a ECMAScript interpreter could enable dillo to be used as frontend for all the new web applications (but I know that this is a huge step and requires lots of planning and pondering design questions in the first place). Thanks for all the support, and special thanks to Diego for releasing your patch. I will definitively try it out! Cheers, Justus -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGEXSroPmwNWhsaZYRAk2tAJ0bBn53ltbvSHqsdoYOGu++OvAoOQCeN94b 6NLt9mgy26xXXYi3qsaGF8I= =n2DK -----END PGP SIGNATURE-----