Wednesday, March 12, 2008
Adobe Flash Player Security Change - Prepare For Some Breaking Changes In April

Adobe is planning to release a security update for Flash Player 9 in April 2008 to strengthen the security of Adobe Flash Player.

This security update will make the optional socket policy file changes introduced in Flash Player 9,0,115,0 mandatory.

  • A socket policy file will always be required for all socket connections
  • A policy file will be required to send headers across domains.
  • The allowScriptAccess default will always be "sameDomain"
  • javascript:" URLs will be prohibited in networking APIs, except getURL(), navigateToURL(), and HTML-enabled text fields

This is probably a good thing, but I am expecting a lot innocent flash applications to get stuck in the crossfire if their developers are not prepared  or are not aware that their application will be nobbled by this update.

JavaScript
Wednesday, March 12, 2008 4:27:13 PM (AUS Eastern Daylight Time, UTC+11:00)  #    Comments [0]

© Copyright 2008 James Mc Parlane
Theme design by Bryan Bell

newtelligence dasBlog 1.9.7174.0
Subscribe to this weblog's RSS feed with SharpReader, Radio Userland, NewsGator or any other aggregator listening on port 5335 by clicking this button.   RSS 2.0|Atom 1.0|CDF  Send mail to the author(s) | Page rendered at Friday, July 25, 2008 2:43:08 PM (AUS Eastern Standard Time, UTC+10:00)