This is a great summary of the security concerns regarding crossdomain.xml files. There's been a lot of talk recently about crossdomain.xml, following John Dowdell's post regarding the change in policy at YouTube.
The Crossdomain.xml revisted article by Aral Balkan, unless otherwise expressly stated, is licensed under a Creative Commons Attribution-Noncommercial 2.0 UK: England License.
The Crossdomain.xml revisted article by Aral Balkan, unless otherwise expressly stated, is licensed under a Creative Commons Attribution-Noncommercial 2.0 UK: England License.
I posted this note over at http://shiflett.org:
Note sure if this is already obvious to everyone, but it seems that “PowerSDK Software Corp.” has registered the domain “http://www.crossdomainxml.org/”. I sure hope that Yahoo and Flickr (Google too?) will keep their sites open for external developers. Cross domain access is truely useful when the “big sites” opt in. I just hope we don’t lose it. Will it be possible for crossdomainxml.org to be kept up to date with policy file location information and status?
Hi — PowerSDK Software Corp. is Ted Patrick’s company. I didn’t know Ted had set that up :)