Hacker News new | past | comments | ask | show | jobs | submit login

He's not a random employee. https://en.wikipedia.org/wiki/Maciej_Stachowiak "he is a leader of the development team responsible for the Safari web browser and WebKit Framework"

For now, his tweet is all the signal we have from Apple.




I'm the person who posted the tweet. Since then, some of my colleagues from the WebKit team have given more specific security feedback. Some of it has been addressed. And the Security Considerations section is less scary. But even so, I'd say we are pretty uncomfortable with this approach, for similar reasons to Mozilla. We can see some advantages to Google re-serving the whole web from their own servers and getting browsers to present it as if it comes from the origin, but it also seems like a worrisome change to the web security model.


And considering Apple's strict policies around public communication, it's pretty safe to describe it as a formal statement of the company's position.


People jumping to this conclusion is why employees are burdened with prefixing everything they say with a disclaimer that they do not speak for their employer :(


I completely agree. My point was only about the reality of communications from Apple employees, not asserting it as an ideal.


Note also the Apple employee's reply upthread.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: