The Anthropic Side Channel (was: How would shallow generators compose with lambda?)
Igor Bukanov
igor at mir2.org
Wed May 27 02:42:54 PDT 2009
2009/5/27 Maciej Stachowiak <mjs at apple.com>:
>
> I'm not sure but I think maybe the Safari behavior is a bug, as the finally
> clause could contain another infinite loop.
Indeed, if a browser respects finally clauses in the code after
terminating a too long running loop, then the following would be an
effective DOS:
javascript:Array(1e3).join('try {')+Array(1e3).join('} finally { while
(1); }');
Regards, Igor
More information about the es-discuss
mailing list