|
|
|
|
|
|
by Ironlink
3255 days ago
|
|
|
Seems to me that one key difference would be that giving javascript access to UDP sockets easily enables a single browser to send huge amounts of traffic since there's no ACK to wait for. With anything based on TCP, the attacker at least has to put some effort in to achieve that. |
|
|