Re: Is _your_ Netscape under remote control

Jeff Uphoff (juphoff@tarsier.cv.nrao.edu)
Fri, 24 May 1996 16:49:21 -0400

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: James W. Abendschan: "Re: Security problem in ESRI's ArcDoc 7.0.4"
Previous message: Jamie: "Re: /dev/openprom problems - Solaris 1 or Solaris 2"

"m" == martinh  <martinh@mailhost.emap.co.uk> writes:

m> Anyone else seen this? Netscape 1.1 and higher can be controlled
m> remotely. This can be abused in many ways as Netscape can be made to open
m> URL's add bookmarks, open local files and save local files without
m> informing the user.

m> [...]

m> The problem is that Netscape relies on X for it's protection, it can
m> write files without telling the user, and there are far too many open X
m> displays out there.

If you're xhosting the world then you've opened yourself up for such a
heap of other troubles (keystroke monitoring, etc.) that Netscape might
well be the least of your worries....

--Up.

--
Jeff Uphoff - systems/network admin.  |  juphoff@nrao.edu
National Radio Astronomy Observatory  |  juphoff@bofh.org.uk
Charlottesville, VA, USA              |  jeff.uphoff@linux.org
    PGP key available at: http://www.cv.nrao.edu/~juphoff/

Next message: James W. Abendschan: "Re: Security problem in ESRI's ArcDoc 7.0.4"
Previous message: Jamie: "Re: /dev/openprom problems - Solaris 1 or Solaris 2"