building pages with tor in mind

Bryan Fordham bfordham at
Tue Feb 27 17:52:22 UTC 2007

> I have yet to see an example of pure JavaScript code that can read an
> end-user's IP address.  Any code I've seen returns either "localhost" or
> "".

That's kind of the conclusion I've reached, though I'm far from an expert.

So, if it can't read the IP, why is it a security risk? Because of cookies?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the tor-talk mailing list