LISTSERV - HP3000-L Archives

HP3000-L Archives

February 2000, Week 3

HP3000-L@RAVEN.UTC.EDU

	LISTSERV Archives
	HP3000-L Home
	HP3000-L February 2000, Week 3

	Log In
	Register

	Subscribe or Unsubscribe

	Search Archives

Options:	Use Monospaced Font Show Text Part by Default Show All Mail Headers
Message:	[<< First] [< Prev] [Next >] [Last >>]
Topic:	[<< First] [< Prev] [Next >] [Last >>]
Author:	[<< First] [< Prev] [Next >] [Last >>]

Subject:	Re: JavaScript risks (was: Wordperfect)
From:	Steve Dirickson <[log in to unmask]>
Reply To:	Steve Dirickson <[log in to unmask]>
Date:	Sun, 20 Feb 2000 14:09:20 -0800
Content-Type:	text/plain
Parts/Attachments:	text/plain (21 lines)

> Regarding "hostile JavaScript code"... Can anybody enlighten me/us
> about the risks associated with JavaScript compared to Java applets?
>
> As far as I understand, Java applets run inside a "sandbox" (unless
> digitally signed and granted more access by the user) and thus should
> be quite limited in their capabilities (as long as the implementation
> of the Java VM inside the browser "plays by the rules" and does not
> have any holes or backdoors). But what about JavaScript? I have next
> to zero knowledge about it, but my impression is that it is a kind of
> "remote control" for the browser and allows the web page designer to
> to all kinds of weird things. For example, I have seen web pages that
> allow me to "upload" a file. Can this be done behind my back, too?

Check out
  http://idm.internet.com/faqs/jsfaq/
  http://developer.irt.org/script/script.htm


Steve Dirickson   WestWin Consulting
[log in to unmask]   (360) 598-6111

ATOM RSS1 RSS2

RAVEN.UTC.EDU