[Webkit-unassigned] [Bug 182248] Supporting allow-top-navigation-by-user-activation to iframe sandbox
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Feb 1 10:29:18 PST 2018
https://bugs.webkit.org/show_bug.cgi?id=182248
Augustine Fou <augustine.fou at gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |augustine.fou at gmail.com
--- Comment #2 from Augustine Fou <augustine.fou at gmail.com> ---
This is very important feature that publishers need to prevent the malicious redirects coming in through ad iframes.
Publishers need this
https://www.admonsters.com/can-sandboxing-defeat-redirects/
As soon as this bug is fixed, publishers can sandbox their iframes but allow user-initiated actions (like clicks on ads that open new tabs or windows). This will prevent the forced redirects that may expose users to malware/malvertising.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20180201/594c0c6b/attachment.html>
More information about the webkit-unassigned
mailing list