<br><div class="gmail_quote">On Mon, Oct 18, 2010 at 11:28 AM, Drew Wilson <span dir="ltr"><<a href="mailto:atwilson@google.com">atwilson@google.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
I believe it's a security feature.<div><br></div><div>Imagine that you download foo.html into your C:/ - according to the logic below, script running in foo.html should be able to read *any file on your C:/ drive*. That seems scary to me.</div>
<div><br></div><div>FWIW, chrome allows passing the --allow-file-access-from-files command line flag to make it easier for developers to work locally without running an HTTP server.</div></blockquote><div><br></div><div>
I wish it was an option for a tab (right-click on the tab -> "Allow File Access" or so), to make spontaneous hacking of a random html easier...</div><div> </div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div><br></div><div>-atw<div><div></div><div class="h5"><br></div></div></div></blockquote></div>