Comment by geor9e

Comment by geor9e 9 days ago

4 replies

View on Hacker News

A tetris PDF could be in a 1 pixel iframe right on this page and you'd never know it. So it doesn't require any user action to download one.

sexy_seedbox 8 days ago

That's why you run NoScript along side with UBO

Reply View 3 replies
  • geor9e 8 days ago

    I'm pretty sure noscript will break 90% of the webpages I visit. I just rawdog the internet. If Chrome gets 0day'd then a lot of us are going down - at least I'll have company.

    Reply View 1 reply
    • throwaway2037 8 days ago

          > If Chrome gets 0day'd then a lot of us are going down
      If anything, Google would have the correct incentive to protect itself from a zero-day exploit. I guess they could release a patched version internally only, but I doubt it. I do think they want the image of Chrome to be relatively positive and giant security hole (patched slowed) would do them no favours.
      Reply View 0 replies
  • grgergo 7 days ago

    This PDF still runs with JS disabled in both of those, and in Firefox about:config...

    Reply View 0 replies