undefined | Better HN

0 pointsbatista14y ago0 comments

That's not a problem at all. If it's worth it to do it, people will do it even if it takes 200 lines. If it's not, they won't bother. So, even with it being achievable as a "first-class" option in CSS4, I don't see any particular rise of this exploit happening.

It's like arguing that something is safer because it requires 10 lines of code instead of one to do the exploit. That's security by obscurity.

0 comments

1 comments · 1 top-level

pestaa14y ago

I guess you're right. Maybe the effect is reverse even - by raising attention to potentional pitfalls.

Still, I can not think of a possible use case this can be useful. Maybe other options will make it worth knowing about.

j / k navigate · click thread line to collapse