Re: Acrobat & JavaScript
Re: Acrobat & JavaScript
- Subject: Re: Acrobat & JavaScript
- From: John W Baxter <email@hidden>
- Date: Fri, 5 Jan 2001 16:30:45 -0800
At 16:06 -0800 1/5/01, Richard 23 wrote:
>
You can load up a page with lots of info (stored in JavaScript
>
variables) allowing the user to continue using using the page
>
without needing more info from the server.
But with caution, unlike what the Bell Atlantic piece of Verizon did a
while back: they information they put in there was the subscriber's
private information for some requested phone number, and they trusted that
the JavaScript would then authenticate the user.
View source, and all was revealed (for any phone number...not just your own).
That was found by a guy for whose browser the script was broken.
--John
--
John Baxter email@hidden Port Ludlow, WA, USA