Quote:
Originally Posted by Tony M
I don't think I've ever used an ****** - is it something you can get browsers to not show as it seems quite a big security risk on any site?
|
See:
Quote:
Originally Posted by Alan T
As far as end users go, users that use firefox with noscript for instance is not fully protected, as by default noscript allowed iframes. Those users should go in to the noscript settings and make sure to explicitly say not to allow iframes either (unless they override it). I am less familiar with internet explorer, but I understand there are ways to protect yourself there as well.
|
People should know, however, that there are legitimate uses for iframes. For example, a number of online leagues use them quite effectively to display league standings on their websites. However, iframes are usually not needed and if a web designer has them as necessary parts of their website then they should probably re-think that. I'd like to keep iframes enabled myself as they can add to a site, but I think for now I'm going to disable them as Alan T explained above. I imagine every web browser probably has a way to disable, except maybe ie.