Re: ActiveX security hole reported.

• To: Stephen Cobb <stephen@iu.net>, Todd Merritt <tmerritt@u.arizona.edu>
• Subject: Re: ActiveX security hole reported.
• From: Ben Camp <benc@geocel.com>
• Date: Fri, 16 Aug 1996 08:44:09 -0500
• Cc: www-security@ns2.rutgers.edu

>This is true, and people are doing this. But consider the big picture.
>Powerful autoloading macros were the heart and soul of the Microsoft sales
>pitch to corporate users. Some companies invested tens, if not hundreds, of
>thousands of dollars worth of development time in macro-based document
>processing automation. Microsoft's suggestion that people "simply" turn off
>autoload is a bit like GMC saying "those cars will be fine, just don't put
>them in gear."
>
>Respectfully...Stephen

You seem to have a slightly negative attitude.  This will of course, fix the
problem.  Would you expect Microsoft to 'fix' DOS since viruses can be
transmitted via DOS executables?  You can either use the tool and accept the
possible problems, or lack the functionality and deal with it.  Seems pretty
simple.

Ben Camp

• Re: ActiveX security hole reported.
• From: sas@mail.pittstate.edu (Scott Sesher)

• Previous: losers .. Auto remail on a Web server?? how do people get on this list?
• Next: Re: ActiveX security hole reported.
• Index(es):
  • Index
  • Thread