Yes, a friend of mine had that happen to him. The site redirected people
all over the place. It took him a long time to work his site back out of
that mess. I can't argue with that. But that happened because his site was
"Joseph M. Newcomer" <newcomer@flounder.com> wrote in message
Duh. There's even a JavaScript exploit that inserts itself into evey
.htm, .html, and
similar page it can find on your Web site, so if it is in someone's pages,
it will place
itself in all of yours! This is old, old hackery, dates back more than a
decade.
JavaScript does NOT offer any protection against such exploits. And it
can invoke
programs and feed them text sequences that exploit buffer overruns and
other holes in
those apps. This has been known for many years. In fact, there is a long
list of ActiveX
controls which JavaVirus scripts can exploit, and they are written by
Microsoft, Kodak,
Adobe, and othe rmajor vendors.
Note that my safety is based no just on your Web site, but every site you
may have
communicated with. Or on any site that *anyone* on your site who had
write rights to your
Web pages may have communicated with!
joe
On Tue, 16 Mar 2010 18:41:02 -0500, "Tom Serface" <tom@camaswood.com>
wrote:
How can viruses be transferred using JavaScript? Unless users download a
client there is very little access to the client's machine. Java applets
are a different animal of course and I wouldn't use them at all.
Tom
"Joseph M. Newcomer" <newcomer@flounder.com> wrote in message
news:52mop5tsniijglmogablk804bsldj6qg2q@4ax.com...
This is because Microsoft makes a lot of noise about being concerned
about
"computer
security" but essentially believe that if YOU care about it, well, screw
you, JavaVIrus
is essential for making Web sites *cool*, and nobody should make their
machines secure by
disabling this primary malware vector (I recently attended a conference
on
computer
security, and what I learned about JavaVirus makes my most rabid rants
about it look
understated compared to the deadly reality! Sort of like my saying
"death
can be a
seirous invonvenience in your life" or "end-stage rabies is really
uncomfortable")
joe
On Sat, 13 Mar 2010 14:00:05 -0500, Hector Santos
<sant9442@nospam.gmail.com> wrote:
Giovanni Dicanio wrote:
Seems like there is a new MSDN VC++ Forum dedicated to MFC and ATL
now:
http://social.msdn.microsoft.com/Forums/en-US/vcmfcatl/threads
Giovanni
It breaks down if javascript is disabled. :)
Joseph M. Newcomer [MVP]
email: newcomer@flounder.com
Web: http://www.flounder.com
MVP Tips: http://www.flounder.com/mvp_tips.htm
Joseph M. Newcomer [MVP]
email: newcomer@flounder.com
Web: http://www.flounder.com
MVP Tips: http://www.flounder.com/mvp_tips.htm