Hacker News new | comments | ask | show | jobs | submit login

One way to mitigate most of these holes is to separate email from web browsing. Some people actually use two different computers or browsers, but I just make sure to log out (not just close the tab with) my email before I browse any other sites. Even sites I trust (because they could have been hit by XSS or something).

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact