[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Securing ActiveX.
On 16 Dec 1996, Nelson Minar wrote:
> On Sat, 14 Dec 1996 [email protected] wrote:
> >I do not understand how one can secure ActiveX.
>
> Me neither! But the approach of requiring code signatures so you can
> at least break the fingers of whomever damaged your machine does have
> some merit.
And just where is this signature stored, hrmmm? On your hard drive? Real
useful when the log is stored somewhere the nasty program can earase, no?
Alternatively, a component can easily just modify your autoexec.bat to
install a time bomb or do other things and you won't recall that two
months ago you visited Billy Vulis's KOTM shop of spam. When was the last
time you looked in your AUTOEXEC.BAT file?
=====================================Kaos=Keraunos=Kybernetos==============
.+.^.+.| Ray Arachelian | "If you're gonna die, die with your|./|\.
..\|/..|[email protected]|boots on; If you're gonna try, just |/\|/\
<--*-->| ------------------ |stick around; Gonna cry? Just move along|\/|\/
../|\..| "A toast to Odin, |you're gonna die, you're gonna die!" |.\|/.
.+.v.+.|God of screwdrivers"| --Iron Maiden "Die With Your Boots on"|.....
======================== http://www.sundernet.com =========================