这是什么,而(1)在Gmail中做 [英] What does while(1) in Gmail do
问题描述
可能重复:
为什么有“而(1);”的在XmlHtt prequest回应?
如果你采取偷看在XHR POST请求的Gmail使得当它更新您的邮件列表中的服务器,你会看到,每个响应开头:
If you take a peek at the XHR POST requests that Gmail makes to the server when it updates the list of your email, you will see that each response starts with:
while(1);
[[["v","CKbPYpt__Vc.en.","8","d7634f09ff9e61c8"]
,["di",342]
,["ub",[["^i",1296218266987]
,["^f",1296218266987]
(...)
为什么谷歌开始与无限循环的每个反应?
Why does Google start each response with endless loop?
我看,这是一个安全的技巧 HTTP://my.opera。 COM / hallvors /博客/ show.dml / 260127 ,但我不知道它是如何应该是一个很好的安全措施。
I read that it is a security trick http://my.opera.com/hallvors/blog/show.dml/260127 but I am not sure how it is supposed to be a good security measure.
推荐答案
以猜...因此,任何恶意的企图评估
响应或指向一个<脚本>
块的资源,而不是正确地解析它,就会失败
Taking a guess... So that any malicious attempt to eval
the response or point a <script>
block at the resource, rather than parsing it properly, will fail.
这篇关于这是什么,而(1)在Gmail中做的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!