Apply same-origin policy to window.name?
We might want to consider applying the same-origin policy to window.name, to reduce tracking between successive website visits in the same tab.
However, like the refer spoofing code, this makes me nervous, as it feels like it will lead to an unknown and almost unknowable number of websites that may break.
We may want to just close this as invalid at some point. I think that once #523 (closed) is implemented, we'll be much happier with leaving window.name and even the referer header alone.