and tabnabbing should work against every site in ~every browser. basically, if you don't constantly monitor the address bar, you lose
(but also: why is tabnabbing still a thing? can't chrome and firefox kill cross-origin, cross-tab location writes?)
-
-
b/c a) ie b) that might break stuff, telemetry needed. You don't just remove stuff from the platform.
-
a) making stuff secure for non-IE users is still a win. b) yeah, telemetry might be needed, doesn't make it infeasible
End of conversation
New conversation -
-
-
: You say "cross-origin, cross-tab location writes", I say "OAuth via popups".
@kkotowicz@mikko - 1 more reply
New conversation
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.