Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
RobotToaster
50 days ago
|
parent
|
context
|
favorite
| on:
A new spam policy for “back button hijacking”
anything loaded from a third party domain shouldn't be allowed to run scripts.
pas
50 days ago
|
next
[–]
facebook.com does this as a first party site, shit sites trying to squeeze eyeball time from visitors should be put on Google's malware sites list, but apparently those are the best sites nowadays... :/
lxgr
50 days ago
|
prev
|
next
[–]
That restriction would both be trivial to circumvent by malicious advertisers and annoying for many legitimate web concepts.
bell-cot
50 days ago
|
prev
[–]
Maybe it's not quite your meaning - but there are browser plugins which allow per-domain blocking of js. I use one, with the default set to deny js.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
