[Webkit-unassigned] [Bug 49845] XSS Auditor severely affects loading performance after submitting a large form

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Feb 14 11:47:51 PST 2011


--- Comment #15 from Alexey Proskuryakov <ap at webkit.org>  2011-02-14 11:47:51 PST ---
> Of course, one can disable XSS Auditor with HTTP headers as a temporary workaround.

Ugh, it turns that one cannot do that with WebKit as released with shipping Safari. XSSAuditor::findInRequest() only checks for X-XSS-Protection header after performing all time consuming operations!

Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list