We (webkit/chrome) have had iframe sandbox implemented for over half a year. We've found some bugs in implementation here and there and fixed them. It solves a very real problem, has already been implemented, and your argument provides absolutely no information. Can you elaborate?<br>
<br><div class="gmail_quote">On Sun, Aug 1, 2010 at 6:59 PM, Tantek Çelik <span dir="ltr"><<a href="mailto:tantek@cs.stanford.edu">tantek@cs.stanford.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Summary: The new 'sandbox' feature on <iframe> should be considered<br>
for removal. It needs a security review, it will be a lot of work to<br>
implement properly, and may not actually solve the problem it is<br>
intending to solve.<br>
<br>
More details here:<br>
<br>
<a href="http://wiki.whatwg.org/wiki/Iframe_Sandbox" target="_blank">http://wiki.whatwg.org/wiki/Iframe_Sandbox</a><br>
<br>
I encourage fellow web authors and browser implementers to add their<br>
opinions/comments to that wiki page.<br>
<br>
Thanks!<br>
<br>
Tantek<br>
<font color="#888888"><br>
--<br>
<a href="http://tantek.com/" target="_blank">http://tantek.com/</a> - I made an HTML5 tutorial! <a href="http://tantek.com/html5" target="_blank">http://tantek.com/html5</a><br>
</font></blockquote></div><br>