Re: Considering what the "legal" Javascript malware does...
"Many websites already require javascript, aka the ability to execute arbitrary code on your machine, just to view the page content"
I suppose. I block all Javascript by default, and rarely has it ever cause a site to simply not function for me. But my website tastes probably naturally lead me away from those sorts of sites. In the few instances that I've encountered sites like that, I've just never come back to them. No big loss.
"I really hope that this trend of in-browser mining continues"
I don't actually care one way or the other. As is, I have to treat mining scripts the same way as I treat advertising scripts -- too dangerous to allow. So I don't really see much of a difference between ads and miners.
"That's the only real fix that we need or should be asking for"
Being able to control CPU allocation is nice, but very far from "the only real fix". I'd much prefer that the functionality of NoScript be part of every browser by default, to give users actual control over which scripts are allowed to run and which are not.
Biting the hand that feeds IT
