Re: Google Web Accelerator
This WebDNA talk-list message is from 2005
It keeps the original formatting.
numero = 62006
interpreted = N
texte = Beyond the really destructive, like the admin stuff we are talking about... What about the user experience of pre-fetching an "add to cart" or a "remove from cart" link...? Seems like the rewrite rules at the server level are the best solution...On May 12, 2005, at 8:03 AM, devaulw@onebox.com wrote:> If someone doesn't have access, the WA doesn't confer it.>> If someone does have access, WA does permit destructive access.> Who wants their proxy server to do that?>> -----Original Message-----> From: Donovan Brooke
> Sent: Thu, 12 May 2005 06:58:37 -0500> To: "WebDNA Talk" > Subject: Re: Google Web Accelerator>> sal danna wrote:>> [snip]They can't get to password protected areas, they don't cache>> https links, they don't cache news or large files. If you have the>> ability to "delete" or "cancel" something sensitive without all of >> those>> protections you are just asking for it to be deleted or >> canceled.[/snip]>> Doesn't matter if it's password protected or not because Google Web>> Accelerator is software you install in your browser so it's seeing>> whatever you are seeing (even if it's password protected). This is>> what the first link says you should do to protect your site:>> "If you have a web app, it might be worth returning a 403 when the>> HTTP_X_MOZ is set to "prefetch" header is sent. This will keep Web>> Accelerator from clicking destructive links.">> Sal D'Anna>> I guess I don't get your point Sal, if its installed on someoneelses> browser that doesn't have access to my sensitive content, how is that> a problem?>> Donovan>>>> -- > =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o> DONOVAN D. BROOKE Eucalyptus Design> <-Web Development (specializing in eCommerce), ->> <- Graphic Design, Custom Tags and Labels ->>> ADDRESS:> Donovan Brooke> DBA Eucalyptus Design> N2862 Summerville Park Rd.> Lodi, WI 53555> PH:> 1.608.592.3567> Web:> http://www.euca.us> =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: http://webdna.smithmicro.com/>>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: http://webdna.smithmicro.com/>>Jay Van Vark'Guiding Positive Change in High-Tech Companies'voice (858) 229-3102efax (801) 659-7952http://www.vanvark.net-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Associated Messages, from the most recent to the oldest:
Beyond the really destructive, like the admin stuff we are talking about... What about the user experience of pre-fetching an "add to cart" or a "remove from cart" link...? Seems like the rewrite rules at the server level are the best solution...On May 12, 2005, at 8:03 AM, devaulw@onebox.com wrote:> If someone doesn't have access, the WA doesn't confer it.>> If someone does have access, WA does permit destructive access.> Who wants their proxy server to do that?>> -----Original Message-----> From: Donovan Brooke > Sent: Thu, 12 May 2005 06:58:37 -0500> To: "WebDNA Talk" > Subject: Re: Google Web Accelerator>> sal danna wrote:>> [snip]They can't get to password protected areas, they don't cache>> https links, they don't cache news or large files. If you have the>> ability to "delete" or "cancel" something sensitive without all of >> those>> protections you are just asking for it to be deleted or >> canceled.[/snip]>> Doesn't matter if it's password protected or not because Google Web>> Accelerator is software you install in your browser so it's seeing>> whatever you are seeing (even if it's password protected). This is>> what the first link says you should do to protect your site:>> "If you have a web app, it might be worth returning a 403 when the>> HTTP_X_MOZ is set to "prefetch" header is sent. This will keep Web>> Accelerator from clicking destructive links.">> Sal D'Anna>> I guess I don't get your point Sal, if its installed on someoneelses> browser that doesn't have access to my sensitive content, how is that> a problem?>> Donovan>>>> -- > =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o> DONOVAN D. BROOKE Eucalyptus Design> <-Web Development (specializing in eCommerce), ->> <- Graphic Design, Custom Tags and Labels ->>> ADDRESS:> Donovan Brooke> DBA Eucalyptus Design> N2862 Summerville Park Rd.> Lodi, WI 53555> PH:> 1.608.592.3567> Web:> http://www.euca.us> =o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o=o>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: http://webdna.smithmicro.com/>>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > > Web Archive of this list is at: http://webdna.smithmicro.com/>>Jay Van Vark'Guiding Positive Change in High-Tech Companies'voice (858) 229-3102efax (801) 659-7952http://www.vanvark.net-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Jay Van Vark
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Cookies? (1997)
spreadsheet interface (1998)
Pithy questions on webcommerce & siteedit (1997)
FYI: Upgrading to 4.0 on Windoze 98 (2000)
Help with taxTotal calculation (1998)
re: sorting and summarizing (1998)
Help! WebCat2 bug (Ben's input) (1997)
WebCat2b13MacPlugIn - [showif][search][/showif] (1997)
WebCat Bulletin Board Solution ? (1998)
Redirect in 4.0 (2000)
Developing for Phones/PDAs (2004)
Range in [showif] (2000)
Hiding HTML and page breaks (1997)
WebCatalog for Postcards ? (1997)
WC2b15 File Corruption (1997)
Re:Dumb Question about Docs (1997)
[searchString] (1997)
ups quickcost [repost] (1999)
E-Mail Preferences in Admin Folder (1997)
GuestBook example (1997)