I'm sure Paypal will be one of them. You have to keep in mind that iFrames can make it appear as though the user is actually viewing the site itself, and not your own site.
Take for example if twitter allowed iframing. A malicious hacker sets up a site with twitter in an iframe, and a login box next to it. An unsuspecting user thinks they need to login to twitter, puts in their username and password, and viola! Now the hacker has their login data.
In the sense of the NYTimes it's most likely a "don't pretend this is your content" issue.
For these reasons the chances of you running into frame-busting on big name sites are fairly high.
发布评论
评论(1)
我确信 Paypal 将是其中之一。您必须记住,iFrame 可以使用户看起来好像实际上正在查看网站本身,而不是您自己的网站。
以 Twitter 允许 iframe 为例。恶意黑客在 iframe 中设置了一个包含 Twitter 的网站,并在其旁边设置了一个登录框。毫无戒心的用户认为他们需要登录 Twitter,输入用户名和密码,然后中提琴!现在黑客已经掌握了他们的登录数据。
从《纽约时报》的角度来看,这很可能是一个“不要假装这是你的内容”的问题。
由于这些原因,您在知名网站上遇到框架破坏的可能性相当高。
I'm sure Paypal will be one of them. You have to keep in mind that iFrames can make it appear as though the user is actually viewing the site itself, and not your own site.
Take for example if twitter allowed iframing. A malicious hacker sets up a site with twitter in an iframe, and a login box next to it. An unsuspecting user thinks they need to login to twitter, puts in their username and password, and viola! Now the hacker has their login data.
In the sense of the NYTimes it's most likely a "don't pretend this is your content" issue.
For these reasons the chances of you running into frame-busting on big name sites are fairly high.