Comment 7 for bug 1485020

I don't know if this is the right place to discuss things that are part of browser security policy. As @mpt stated, browser devs are evaluating the risk for people not aware of the issue. I doubt Ubuntu dev teams could do anything with that, this is not a technical failure that they could resolve, so we could close this bug. And be sure the day Ubuntu will loosen browsers security policies, it will make a big "bad buzz", and the all distro will be reported as "less protecting people" than distro XXX.

IMHO, even if this case (that happened to me too) is annoying, I prefer blaming the service provider rather than the browser. And once all browsers have been updated, the service provider will obviously become aware of the problem.