Javascript & Windows XP SP2 Security

N

Nathan Sokalski

As most Javascript coders probably know by now, IE on Windows XP SP2 likes
to prevent our code from running right away (the user is asked to give
permission the first time). Although I can see the danger in allowing all
scripts to run, the fact that IE makes it sound like we are going to install
some huge, horrible application when we are simply adding rollovers or
client-side validation or some other simple little thing really frustrates
me. Specifically what stuff does IE block? Does it check for certain methods
in the script? Does it block everything until you say it's OK? What can
places do to allow their scripts to be run without the need to be validated
by the user? I have heard about "Signed Scripts", but I feel that it would
be hard to modify and develop when a script had to be "Signed" every time.
Any comments?
 
W

wl

Nathan Sokalski said:
As most Javascript coders probably know by now, IE on Windows XP SP2 likes
to prevent our code from running right away (the user is asked to give
permission the first time). Although I can see the danger in allowing all
scripts to run, the fact that IE makes it sound like we are going to
install some huge, horrible application when we are simply adding
rollovers or client-side validation or some other simple little thing
really frustrates me. Specifically what stuff does IE block? Does it check
for certain methods in the script? Does it block everything until you say
it's OK? What can places do to allow their scripts to be run without the
need to be validated by the user? I have heard about "Signed Scripts", but
I feel that it would be hard to modify and develop when a script had to be
"Signed" every time. Any comments?
Click to expand...


My experience is that Internet Explorer is only asking to run the script if
the page is run locally (from the file system).
It seems no confirmation is needed when the page is hosted on the internet ?

Wim
 
K

kaeli

As most Javascript coders probably know by now, IE on Windows XP SP2 likes
to prevent our code from running right away (the user is asked to give
permission the first time).
Click to expand...

AFAIK, only on localhost.
So what's the problem?
You coding for a CD for Windows? If so, use HTA instead.
There's a reason for the new security settings, and as irritating as it is
for testing stuff locally, it is actually a pretty good idea, considering all
the security holes in MSIE. There is a workaround for turning it off. Google
it. It's on MSDN somewhere.

--
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Final chapter of "Learn PHP, MySQL and JavaScript" 3
KML to CSV file conversion using Python and Windows Powershell 0
XP SP2 and opening windows 2
Creating an ActiveX object in Autoproxy script failing in Xp SP2 0
Add recipes using JavaScript in table 20
treeview.htc and XP IE6.SP2 Security Zones 0
XP SP2 breaks body onload or location.href? 1
Old LOCKFILE warning on github repo - I cant run the app locally 1

Members online

No members online now.
Total: 44 (members: 0, guests: 44)
Robots: 489

Forum statistics

Threads
473,969
Messages
2,570,161
Members
46,708
Latest member
SherleneF1

Latest Threads

Top