Hallvord R M Steen
hallvors at gmail.com
Thu Mar 16 08:01:54 PST 2006
> > If you today embed data on an
> > SCRIPT tag and steal the data.
> Could you please describe how exactly? the contents of remote script
> elements are not typically available (and if they are it's a large
> be queried, that is not the case with bare JSON.
You are right, if no variables are created one can't see the data by
loading it in a SCRIPT tag. Are you aware of intranets/CMSes that use
this as a security mechanism?
Hallvord R. M. Steen
More information about the whatwg