|
|
|
|
|
|
by moonboots
4817 days ago
|
|
|
Sandbox iframes allow disabling javascript in a frame, which disables framebusting protection [1] used by sites like vk.com. The better way to framebust is to add the header 'x-frame-options: deny', which isn't broken by html5 sandboxes. [1] http://en.wikipedia.org/wiki/Framekiller |
|
|