Flash Securitah
I'm always trying to remember how to circumvent (with some risk, natch) the Flash security sandbox.
"...for a local SWF file with network-access permissions to script a SWF file on the Internet, the Internet SWF file being accessed must call System.security.allowDomain("*"), reflecting that the origin of a local SWF file is unknown. (If the Internet SWF file being accessed is loaded from an HTTPS URL, the Internet SWF file must instead call System.security.allowInsecureDomain("*").)
The full technical note is available here.
*
Also, for even more securitah:
Security Changes in Flash Player 8
and
Flash 8 Security White Paper (PDF)
"...for a local SWF file with network-access permissions to script a SWF file on the Internet, the Internet SWF file being accessed must call System.security.allowDomain("*"), reflecting that the origin of a local SWF file is unknown. (If the Internet SWF file being accessed is loaded from an HTTPS URL, the Internet SWF file must instead call System.security.allowInsecureDomain("*").)
The full technical note is available here.
*
Also, for even more securitah:
Security Changes in Flash Player 8
and
Flash 8 Security White Paper (PDF)
posted by Mr. Entropy at 10:48 PM
0 Comments:
Posta un commento
<< Home