[Koha-bugs] [Bug 16210] Bug 15111 breaks the OPAC if JavaScript is disabled
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Apr 13 01:08:51 CEST 2016
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=16210
Chris Cormack <chris at bigballofwax.co.nz> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |chris at bigballofwax.co.nz
--- Comment #11 from Chris Cormack <chris at bigballofwax.co.nz> ---
(In reply to Owen Leonard from comment #10)
> This works for me to enable use of the OPAC without JavaScript, which I
> think is an important goal.
>
> I think we can rationalize the vulnerability for older browsers by saying
> "If you're still using one of these browsers you are probably vulnerable to
> any number of other terrible security problems because of your old computer
> and/or browser and what's one more?"
>
> I will leave it to someone who knows better than I to test whether this
> solves the security problem it's meant to fix.
Yeah, it does what it should, and yep if you are running a 6 year old browser,
chances are someone already is doing all your internet banking for you. Having
someone put a hold on a book you don't want, is the least of your worries at
that point.
I think it is better to allow those who run without JS turned on (often for
very legitimate reasons) to be able to use the OPAC. Than to try to support
browsers from last decade.
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list