Re: [OT] When will Apple learn?
Re: [OT] When will Apple learn?
- Subject: Re: [OT] When will Apple learn?
- From: Martin Orpen <email@hidden>
- Date: Mon, 09 May 2005 18:13:21 +0100
on 9/5/05 17:38, John C. Welch at email@hidden wrote:
> On 5/9/05 11:01, "Martin Orpen" <email@hidden> wrote:
>
>> <http://p2pnet.net/story/4777>
>>
>> Widget security vulnerability.
>>
>> Widgets of mass destruction can be deployed in 0.45 seconds...
>
> *no* they cannot.
>
> The worst this will automatically do is set the widget in the dashboard bar.
Which is why I used the term *deployment*.
> It will not autoexecute the widget. That's not to say this doesn't make it
> MUCH easier to cause problems, but it's not that magical.
>
> In fact, if you turn off that idiotic "Open Safe Files" option in Safari,
> this isn't a real problem at all.
I don't follow that reasoning. I've no problem unzipping the widget, I just
don't want to install it.
> Maybe if we all file security bugs about the lunacy of the "safe" file...
--
Martin Orpen
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Applescript-users mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden