Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
lazugod
on Dec 19, 2012
|
parent
|
context
|
favorite
| on:
Facebook's legal team bans developer of F.B. Purit...
This is already the case with Chrome. See
http://superuser.com/questions/450893/how-to-install-a-priva...
which details how unauthorized userscripts are made difficult to install.
Even better, try pasting
javascript:alert('hi');
into the address bar.
btrask
on Dec 19, 2012
|
next
[–]
Those changes were made for security, to make social engineering attacks more difficult. You can still type JS into the address bar, you just can't copy and paste it.
Kerrick
on Dec 20, 2012
|
parent
|
next
[–]
Further, you
can
copy and paste it into the console.
nathanhammond
on Dec 20, 2012
|
prev
|
next
[–]
I can confirm that this was to close actively exploited security vulnerabilities. I was one of the first to file a "bug" on this attack vector. :)
_oghd
on Dec 19, 2012
|
prev
|
next
[–]
this is probably a good thing more often then not, though.
fudged71
on Dec 20, 2012
|
prev
[–]
Fascinating!
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
Even better, try pasting
into the address bar.