so when does cross-domain security become an issue?
Sorry, seems I was mistaken. I thought i had seen an example where a developer had used AJAX to request the RSS from Twitter but wasn't using a proxy (seems they were using a proxy to acheive this).
My next question is how can this be achieved without a proxy, or more specifically how can this be acheived with iFrames?
One hack most people attempt is setting
I've heard that another solution is to create a sub domain and load that into the iFrame and then through DNS repoint the sub domain to the 3rd party site you wish to use, but surely that wouldn't work without the cooperation of the 3rd party site? I don't know enough about DNS settings so maybe someone can elaborate on this for me please and give an explanation/example on how to set-up the DNS of a subdomain to achieve this.