BoyWiki:Agora/9 April 2016: Difference between revisions
Created page with "=Agora/9 April 2016= ==Does javascript at BoyWiki compromise user security== Recent conversation between myself and User4 (and briefly including..." |
→Does javascript at BoyWiki compromise user security: also js needed to display the Agora link in left menu frame |
||
Line 5: | Line 5: | ||
I just wonder if it is at all conceivable that such a script could e.g. request the user's computer to disgorge its current IP address and submit it to some nefarious recipient. From previous discussions at Agora I have come to understand that the technical knowhow of the wiki operators is not always up to par, so perhaps they also wouldn't know the answer to that hypothetical. | I just wonder if it is at all conceivable that such a script could e.g. request the user's computer to disgorge its current IP address and submit it to some nefarious recipient. From previous discussions at Agora I have come to understand that the technical knowhow of the wiki operators is not always up to par, so perhaps they also wouldn't know the answer to that hypothetical. | ||
Perhaps it would be prudent not to base any user interactions on the use of javascript? __[[User:Meco|meco]] ([[User talk:Meco|talk]]) 16:42, 9 April 2016 (UTC) | Perhaps it would be prudent not to base any user interactions on the use of javascript? | ||
In addition to preformatting new Agora subpages, I can also identify javascript needed in order for the Agora link to appear in the left menu frame. __[[User:Meco|meco]] ([[User talk:Meco|talk]]) 16:42, 9 April 2016 (UTC) |
Revision as of 16:51, 9 April 2016
Agora/9 April 2016
Does javascript at BoyWiki compromise user security
Recent conversation between myself and User4 (and briefly including Etenne) has made it apparent that BoyWiki uses javascript to assist in formatting Agora subpages upon their creation. With a user base as sensitive to security issues and the preservation of anonymity as that of BoyWiki, is it at all responsible on the part of the site operators to lay as a premise for smooth interfacing with the website that users have javascript enabled?
I just wonder if it is at all conceivable that such a script could e.g. request the user's computer to disgorge its current IP address and submit it to some nefarious recipient. From previous discussions at Agora I have come to understand that the technical knowhow of the wiki operators is not always up to par, so perhaps they also wouldn't know the answer to that hypothetical.
Perhaps it would be prudent not to base any user interactions on the use of javascript?
In addition to preformatting new Agora subpages, I can also identify javascript needed in order for the Agora link to appear in the left menu frame. __meco (talk) 16:42, 9 April 2016 (UTC)