Security and Javascript

Andreas K. Foerster list at
Fri Jun 28 13:14:58 UTC 2013

On Fri, Jun 28, 2013 at 10:37:44AM +0200, Matthias Kirschner wrote:

> I'd like to have some feedback from you. Do you agree with those points?
> 1) on most computers Javascript is enabled by default

In the next version of Firefox they even want to remove the option
to disable JavaScript!

I'm also torn on this topic. On the one hand I'm fascinated on what
you can do with JavaScript - on the other hand that makes me really

You know how the saying goes:
Why is a sandbox called "sandbox"?
... Because only little children believe in it.

Another issue you haven't mentioned yet is, that most of it is 
unfree software that runs on the computer of the users.
I mean you have even less control over it than with proprietary
software. With proprietary software the user actively decides
to install it, and once installed, nobody can change it or
take it away. That is different with JavaScript...

In the beginning JavaScript was just benign simple scripts, but
today that can be large software. The package "emscripten" is a
compiler, that compiles C and C++ to JavaScript. Look at the
demoes, what that can already do today:

It is so fascinating - and yet so frightening!

AKFoerster <>

More information about the Discussion mailing list