Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
mathias
on April 29, 2016
|
parent
|
context
|
favorite
| on:
Front-End Performance: The Dark Side
> It looks like this is possible because there is not an explicit 'access-control-allow-origin' header set on facebook
CORS has nothing to do with it, actually. This is where the strength of the attack lies.
Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
CORS has nothing to do with it, actually. This is where the strength of the attack lies.