Don't use JavaScript - 17 August 2006
Today I learned about a completely legal javascript hack that scans your internal network. It isn’t a hack and doesn’t take advantage of any javascript errors. This is scary. I tried this with firefox and IE and neither worked correctly. IE always reported open with a web server. Firefox always reported closed or no server on the IP, but I run with fairly secure settings, so perhaps that is why? Who knows, but it isn’t worth it, IMO.
Basically, it isn’t safe to surf without javascript disabled. This breaks most of the web sites, but a good webmaster will allow "some" level of browsing without javascript enabled. Clearly I suck as a webmaster – on my top level page at least.
Ok, to that end, this site will be redone using CSS-only as soon as I can make it happen cleanly. Removing javascript is no small task since this is a wiki too.
