Re: [Q] virus susceptibility data

To: debian-user@lists.debian.org
Subject: Re: [Q] virus susceptibility data
From: Brian May <bam@debian.org>
Date: 19 Jul 2000 08:43:30 +1000
Message-id: <[🔎] 84ya2z2h65.fsf@snoopy.apana.org.au>
In-reply-to: Ted.Harding@nessie.mcc.ac.uk's message of "18 Jul 00 09:55:45 GMT"
References: <[🔎] 87puoccclo.fsf@epkowa.co.jp> <[🔎] XFMail.000718105545.Ted.Harding@nessie.mcc.ac.uk>

>>>>> "," == , Ted Harding <Ted.Harding@nessie.mcc.ac.uk> writes:

    ,> A line of virus which might well be possible, and
    ,> platform-independent, is the planting of Java in HTML. This
    ,> could hit UNIX/Linux and Windows equally, though I haven't
    ,> heard of it on Linux. A lot of Linux MUAs can open HTML
    ,> attachments in Netscape, though usually not automatically (the
    ,> user has to choose).

For another potential platform independent security problem in
HTML[1], see:

http://www.zope.org/Members/jim/ZopeSecurity/ClientSideTrojan

this a bit different though, as you can't breach the security of your
computer, just other web sites where you have non-standard privileges
(whether this is based on IP address, HTTP authorisation, or cookie
based scheme - did I miss anything?).

Footnote:
[1] I will blame HTML for it here, but technically, you could argue it
isn't HTML's fault.
-- 
Brian May <bam@debian.org>

Reply to:

References:
- [Q] virus susceptibility data
  - From: Olaf Meeuwissen <olaf@epkowa.co.jp>
- RE: [Q] virus susceptibility data
  - From: (Ted Harding) <Ted.Harding@nessie.mcc.ac.uk>

Prev by Date: Re: Why not diff binaries?
Next by Date: Re: Enlightenment and X
Previous by thread: RE: [Q] virus susceptibility data
Next by thread: Re: [Q] virus susceptibility data
Index(es):
- Date
- Thread