Principle of least privilege was once a fundamental pillar of all IT.ConfirmedUbuntu wrote:Never have seen any problem with browser cookies per session myself. Why cut off one's nose to spite one's face?
Sad that this is not taught, or practiced, anymore.The original formulation is from Jerome Saltzer:
Every program and every privileged user of the system should operate using the least amount of privilege necessary to complete the job. (Protection and the Control of Information Sharing in Multics, CACM 1974, volume 17, issue 7, page 389)
None taken. Elsewhere, this writer has encouraged MZ to keep the 3.6 branch supported, while they continue to test the shiny new toys on the eager users.ConfirmedUbuntu wrote: And conservatives of the Firefox Community, such as Tom T, are also very much part of the landscape, no offense at all intended to conservatives.
Very much as MS's disaster with Vista caused them to extend XP support for longer than any other MS OS *ever*, until they could hope that Win 7 would prove itself and restore some credibility.
YouTube is doing a good job with this via the graceful fallback to Flash for the non-HTML5 crowd.
Any reason why HTML5 tags like <audio> and <video> should not have exploits found in them (just as Flash has, indeed)?
NS had to add ability to block WebGL, of which exploits were found very rapidly, and of @font-face, of which a couple more are in the Dec MS Updates.
Another "quaint" principle: "One man's feature is another man's exploit." This is so self-evidently true in the IT world that those who are more interested in security and privacy than in shiny new toys tend to be, as you said, "conservative" in jumping into the new techs. In this case, the opposite of "conservative" is often "pwned".
For those willing to risk it, and be guinea pigs for the rest of us, cool. btw, I didn't get XP until four years and two Service Packs after it was released -- and for good reason, if you know the history of it.
Already seen it, thanks. But if you'll remember, I didn't experience the issue on new-decade 8.01, either.ConfirmedUbuntu wrote:Tom T, you may like to preview the youtube.com/html5 page for other ways to force non-flash videos next time you venture into this new decade of browsers
Your contributions were appreciated. I answered because even though you might no longer be monitoring the thread, there are other users who might be.ConfirmedUbuntu wrote:Please, don't trouble to answer, that's just a heads up if you haven't found the page yet. I'll be no longer monitoring the thread now it's resolved
My point exactly. So disable cookies, or else go to the trouble of using cookie-editor tools. If the site works without the cookie, as YT did for me throughout the entire thread, on both browsers, disabling the cookie is easier.Guest wrote:Eh, who restarts their browser nowadays?
Which is exactly why Your Friendly Conservative has disabled all three.Guest wrote:after all it's not clear what a session means to the user, users might perceive sessions differently now that there are features like session restore, sync, hibernate, ...).
