Safari also completely disallows keyboard input in fullscreen mode, which majorl... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		othermaciej on Oct 9, 2012 \| parent \| context \| favorite \| on: Using the HTML5 Fullscreen API for Phishing Attack... Safari also completely disallows keyboard input in fullscreen mode, which majorly mitigates the vulnerability.

mistercow on Oct 9, 2012 [–]

Does it also disable using any kind of keyboard event? Because if so, that cuts out a ton of legitimate use cases for full screen. If not, it just makes the vulnerability slightly more of a pain to exploit.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact