Talk:UnsafeWindow: Difference between revisions

From GreaseSpot Wiki
Jump to navigationJump to search
Anonymous -OPENVPN/DoubleVPN- Service
 
(6 intermediate revisions by 4 users not shown)
Line 1: Line 1:
Hello There Dear Users in Global Internet!!!                 
We should add an example of an exploit. If not running code (would be nice) for security-by-obscurity reasons, then at least explain what could happen. --[[User:195.67.240.29|195.67.240.29]] 17:39, 13 April 2007 (EDT)
                 
 
Suggest to you the service!               
: +1 I've never totally understood *what* the vulnerabilities areThis is the most I've ever gotten: http://arantius.info/gm/security/gm-escalate-getter.html [[User:Arantius|Arantius]] 12:17, 13 May 2007 (EDT)
BeST Anonymous Surfing and Downloading in Internet !!!       
----
Privacy, encrypt your traffic as well as change your real IP-addresses on the Internet.                
 
If your Internet is a Blocked - you went go straight to the address!                 
An Authoritative and Tested Provider - VPN Service!!!                 
WebSite Here - In-Disguise .com                 
     
This way, your data over the internet is safety from third parties (like ISPs and hackers).                
Our In-Disguise VPN GUI Pogram - Easy to Install.                
We offer a service OpenVPN, DoubleVPN and PPTP VPN - ACCESS to 18 SERVERS in 11 COUNTRIES, only 9 Euro per month.                  
UNLIMITED TRAFFIC AND FAST DOWNLOAD SPEED.                
1 Subscription = 9 Euro, Connect to ALL servers of your choice!                 
Available Prices on All Servers: - 1 month = 9evro; 3 months = 20evro; 6 months = 35evro; 1 year = 55 Euro!                 
WebSite Here - WWW . in-disguise .com /?aff=69               
                 
Hide your real IP address: Unblock websites, adult, poker, social networks, Unblock all VOIP Applications include Skype;                 
Virtual Private Network (VPN) is a great tool for online privacy.                 
VPN creates a secure(encrypted) and protected tunnel between your computer and web through its server.                
  ---===----====---                 
3 Level Affiliate Program.                
                 
  Commission is given every week!                 
In addition, we additionally you the excellent opportunity to resell our VPN services to your customers.                 
Lifetime commissions are as follows:                
1 level - you get 25 % of all your customers payments.                
2 level - you get 10 % of your partner customers payments.                 
3 level - you get 1 % of your all partners levely 2.                
Get on board and start making profits today!                 
To become our Affiliate, you should get a Unique Invite Code by the contacts below and registrate your account at vpnincome .com 
Contact:                 
ICQ: 69-0-69-11                 
Yahoo: frady.katz@yahoo.com                 
BeST Regards !


== How to do I use GM_setValue safely? ==
== How to do I use GM_setValue safely? ==

Latest revision as of 03:38, 11 April 2012

We should add an example of an exploit. If not running code (would be nice) for security-by-obscurity reasons, then at least explain what could happen. --195.67.240.29 17:39, 13 April 2007 (EDT)

+1 . I've never totally understood *what* the vulnerabilities are. This is the most I've ever gotten: http://arantius.info/gm/security/gm-escalate-getter.html Arantius 12:17, 13 May 2007 (EDT)


How to do I use GM_setValue safely?

I want to insert in the page an HTML element that can be used to update a preference.

My strategy for doing this is:

  • add the element in the userScript, with an onclick property set to call updatePref(new_state);
  • add a function to update the setting to unsafeWindow, here is the function:
	unsafeWindow.updatePref = function(state) {
		var s;
		if (state) { s = true; } else { s = false; }
		GM_setValue('pref', s);
	};

Questions:

  • Is it safe?
  • Is there a better way that does not involve unsafeWindow?


You should be able to just define the method on window. So try just
function updatePref(state) {
  …
}

--81.227.36.227 04:13, 6 May 2007 (EDT)

Asking questions should really be done on the mailing list not the wiki. Arantius 12:17, 13 May 2007 (EDT)

This page would be a zillion (conservative estimate) times more useful if it actually described why unsafeWindow is unsafe instead of asking us to take it on trust. I have attempted such an explanation, but it would benefit from checking by someone who knows more about it than I do, Dan 18:17, 5 September 2008 (EDT) Dan 08:02, 6 September 2008 (EDT)


@Photodeus Careful... this is part of the API and there will be consistency here... this isn't wikipedia's style. Marti 22:45, 28 April 2009 (EDT)

Danger, danger... high voltage!

Can we supply an example of HOW exactly unsafeWindow is unsafe? It reminds me of Statistics class. If your residual plot shows non-random scattering, "proceed with caution". And exactly what does proceeding with caution entail? QED. --aavindraa 02:18, 25 August 2009 (EDT)

Well you see... you stick the fork into the outlet and watch the pretty sparks fly! ;). As a general rule of thumb, in my circles, it's not a wise idea to teach someone to use kitchen utensils unwisely. ;) Marti 03:18, 27 August 2009 (EDT)
Does http://groups.google.com/group/greasemonkey-dev/tree/browse_frm/thread/933ecdb307c4386d/864b5121ad4698cb give enough detail? Someone should merge info from there in here. (Yes, "someone" might include me, at a future date.) Web-Crawling Stickler 06:55, 28 February 2010 (UTC)