[[[ Descriptor: This is a bit off topic; perhaps we should make another thread for this. Thanks for filling in for me on Opera's capabilities; it's not a system I've worked with before. I'll assume you're right with Opera's xpath and that they have an implementation of the XMLHTTPRequest, but I don't think it behaves the same way greasemonkey's does. The vast majority of XMLHTTPRequest functions are restricted to sending requests to the same host name that the page came from. This is to prevent any malicious scripts from using people viewing the site to unknowingly be, say, flood-pinging someone's web server. Greasemonkey gets a special implementation of XHR, which can request from any host. The reason this is safe is that you (should) know what scripts you have installed and what they contain. Incidentally, this is one of the biggest reasons why the unsafeWindow is unsafe; if the object is used, malicious javascript on a website could theoretically steal the greasemonkey version of XHR and use it maliciously. The Point: Greasemonkey scripts that depend on XHR calls to sites different than the domain of the original site may not work outside of greasemonkey. -Joel ]]] <p>[[[ Descriptor: <br />This is a bit off topic; perhaps we should make another thread for this.</p> <p>Thanks for filling in for me on Opera's capabilities; it's not a system I've worked with before.</p> <p>I'll assume you're right with Opera's xpath and that they have an implementation of the XMLHTTPRequest, but I don't think it behaves the same way greasemonkey's does. The vast majority of XMLHTTPRequest functions are restricted to sending requests to the same host name that the page came from. This is to prevent any malicious scripts from using people viewing the site to unknowingly be, say, flood-pinging someone's web server. Greasemonkey gets a special implementation of XHR, which can request from any host. The reason this is safe is that you (should) know what scripts you have installed and what they contain. Incidentally, this is one of the biggest reasons why the unsafeWindow is unsafe; if the object is used, malicious javascript on a website could theoretically steal the greasemonkey version of XHR and use it maliciously.</p> <p>The Point: Greasemonkey scripts that depend on XHR calls to sites different than the domain of the original site may not work outside of greasemonkey.</p> <p>-Joel ]]]</p> 2007-06-23T15:11:02Z 2 Forum 2574 583 2007-06-23T15:11:02Z 24068