WordPress.org

Make WordPress Core

Changes between Initial Version and Version 1 of Ticket #12293


Ignore:
Timestamp:
02/19/10 21:04:55 (5 years ago)
Author:
ryan
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #12293 – Description

    initial v1  
    1 We discussed this before when Twitter was suffering from the iframe clickjacking attacks. Such attacks are much harder to do on individual WP sites than on big sites like Twitter and wp.com.  They are still possible though, so we should consider integrating frame busting.  The problem is that frame busting does break some plugins. Plugins would need API to turn of frame busting for their pages and would have to update to use that API. 
     1We discussed this before when Twitter was suffering from the iframe clickjacking attacks. Such attacks are harder and less tempting to do on individual WP sites than on big sites like Twitter and wp.com.  They are still possible though, so we should consider integrating frame busting.  The problem is that frame busting does break some plugins. Plugins would need API to turn of frame busting for their pages and would have to update to use that API.