> Regarding "hostile JavaScript code"... Can anybody enlighten me/us
> about the risks associated with JavaScript compared to Java applets?
>
> As far as I understand, Java applets run inside a "sandbox" (unless
> digitally signed and granted more access by the user) and thus should
> be quite limited in their capabilities (as long as the implementation
> of the Java VM inside the browser "plays by the rules" and does not
> have any holes or backdoors). But what about JavaScript? I have next
> to zero knowledge about it, but my impression is that it is a kind of
> "remote control" for the browser and allows the web page designer to
> to all kinds of weird things. For example, I have seen web pages that
> allow me to "upload" a file. Can this be done behind my back, too?
Check out
http://idm.internet.com/faqs/jsfaq/http://developer.irt.org/script/script.htm
Steve Dirickson WestWin Consulting
[log in to unmask] (360) 598-6111