CaneTalk: Re: Can we help Chris?

Re: Can we help Chris?

Posted by Chris in Tampa on 5/27/2009, 12:33 am

No problem, I like Flash too. You could link to something in Flash and have a static image of it.

I've been thinking about it tonight and I do see some problems with allowing Flash. Having a site like YouTube would be okay because people can't upload an SWF file there. Unfortunately it appears PhotoBucket allows SWF uploads which means someone can add something they should not be able to add to the Flash file. Unless I can find a way to prevent that I would not be able to allow Flash except for major sites that have it only as a means for video content. They could not allow people to upload SWF files so that scripts could be added. Unless I can find something I could add to the object and embed tags that disabled anything that could be a security risk, I could not allow Flash. And then there might be some older Flash version that would not be secure because they might not understand the commands even if they do exist.

After thinking about it, I don't think there is any way I could allow Flash except for a site like YouTube. (and even that site I would have to disallow if they ever allowed people to upload SWF files, but I seriously doubt they would.)

Since I am convinced that I will not be able to have Flash, I'll tell you the problems.

1. Cookies - Even though any passwords stored in a cookie are encrypted, I think Flash could access a cookie stored locally on a user's machine and send it to another site. Even though the encryption is supposed to be one way and should not be something anyone could decrypt, especially using some of the methods I use, I wouldn't like that.

2. Redirect - Flash can easily redirect people to another page. If someone clicks a link on this site it is their decision to do so. But, if as soon as they load the page it is redirected using Flash to a site with a virus for example, that wouldn't be good.

I just don't think there would be anyway for me to prevent any of that unfortunately. I especially don't know how I would prevent against a page redirecting. That's why I don't allow JavaScript in the forum or meta tags. Unfortunately Flash is getting too advanced for its own good in some ways.

In this thread:

Can we help Chris? - Doorman, 5/26/2009, 8:23 pm

Re: Can we help Chris? - Chris in Tampa, 5/26/2009, 8:36 pm
- Re: Can we help Chris? - Doorman, 5/26/2009, 8:46 pm
  - Re: Can we help Chris? - Chris in Tampa, 5/26/2009, 9:29 pm
    - Re: Can we help Chris? - Doorman, 5/26/2009, 11:12 pm
      - Re: Can we help Chris? - Chris in Tampa, 5/27/2009, 12:33 am
        Re: Can we help Chris? - Chris in Tampa, 5/27/2009, 12:57 am
        Testing YouTube Link - Target, 5/28/2009, 1:35 am
        Re: Testing YouTube Link - hanna, 5/30/2009, 12:22 am
        Re: Testing YouTube Link - CypressTX, 5/28/2009, 10:49 pm
        more info - Doorman, 5/27/2009, 8:03 pm
        Re: more info - Chris in Tampa, 5/27/2009, 8:49 pm

< Return to the front page of the: message board | monthly archive this page is in

Post A Reply

This thread has been archived and can no longer receive replies.