[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Another Netscape Bug (and possible security hole)

To: [email protected]
Subject: Re: Another Netscape Bug (and possible security hole)
From: Adam Shostack <[email protected]>
Date: Fri, 22 Sep 1995 16:19:46 -0400 (EDT)
Cc: [email protected] (Cypherpunks Mailing List)
In-Reply-To: <[email protected]> from "[email protected]" at Sep 22, 95 03:47:03 pm
Sender: [email protected]

[email protected] wrote:
| On Fri, 22 Sep 1995, Adam Shostack wrote:

| > 	I keep hearing this thought.  Isn't Win95 with its
| > 'executables in email' much more dangerous than Java, which at least
| > tries to address security?
| 
| Is that the new MS-Word you're thinking of?  I hear that it lets you
| imbed macros containing executable code in documents.  That's got to
| be one of the most dangerous ideas ever cooked up.

	No, this is a seperate problem.  Its not auto-executing code
in Microsoft documents that worries me, so much as the ability to
include executables as clickable images in a mail message, with the
user having no control over what environment the program executes in.

	If strong fences make good neighbors, where are the fences in
my network neighborhood?

Adam

-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume

References:
- Re: Another Netscape Bug (and possible security hole)
  - From: [email protected]

Prev by Date: Re: Another Netscape Bug (and possible security hole)
Next by Date: Re: Patents and trade secrets was: Encryption algorithms used in PrivaSoft
Prev by thread: Re: Another Netscape Bug (and possible security hole)
Next by thread: Re: Another Netscape Bug (and possible security hole)
Index(es):
- Date
- Thread