[tahoe-dev] same origin
James A. Donald
jamesd at echeque.com
Thu Jul 29 07:50:37 UTC 2010
Some time ago, someone proposed a local service that would map all
domains of the form *.tahoe-stuff to the same network address, thereby
allowing every web page to have a separate origin, thus preventing
common origin attacks, but this would create some other insecurity.
I did not understand why this would create some other insecurity, but
failed to pipe up at the time.
But the more I think about it, the less I can see how it would create
some other insecurity.
More information about the tahoe-dev
mailing list